Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ftp server vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv2
CVE-2020-5196
Cerberus FTP Server Enterprise Edition prior to versions 11.0.3 and 10.0.18 allows an authenticated malicious user to create files, display hidden files, list directories, and list files without the permission to zip and download (or unzip and upload) files. There are multiple wa...
Cerberusftp Ftp Server
4.3
CVSSv2
CVE-2007-5930
Cross-site scripting (XSS) vulnerability in the web interface in Cerberus FTP Server prior to 2.46 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Cerberus Ftp Server
6.8
CVSSv2
CVE-2004-2674
Directory traversal vulnerability in ArGoSoft FTP Server prior to 1.4.1.6 allows remote authenticated users to determine the existence of arbitrary files via ".." sequences in the SITE UNZIP argument.
Argosoft Ftp Server
4.3
CVSSv2
CVE-2016-9500
Accellion FTP server prior to version FTA_9_12_220 uses the Accusoft Prizm Content flash component, which contains multiple parameters (customTabCategoryName, customButton1Image) that are vulnerable to cross-site scripting.
Accellion Ftp Server
5
CVSSv2
CVE-2004-1428
ArGoSoft FTP prior to 1.4.2.1 generates an error message if the user name does not exist instead of prompting for a password, which allows remote malicious users to determine valid usernames.
Argosoft Ftp Server
5
CVSSv2
CVE-2019-9600
The Olive Tree FTP Server (aka com.theolivetree.ftpserver) application up to and including 1.32 for Android allows remote malicious users to cause a denial of service via a client that makes many connection attempts and drops certain packets.
Theolivetree Ftp Server
6.8
CVSSv2
CVE-2004-2675
ArGoSoft FTP Server prior to 1.4.1.6 allows remote authenticated users to cause a denial of service (crash) via a SITE PASS command with a long password parameter, which causes the database to be corrupted.
Argosoft Ftp Server
1 EDB exploit
5
CVSSv2
CVE-2016-9499
Accellion FTP server prior to version FTA_9_12_220 only returns the username in the server response if the username is invalid. An attacker may use this information to determine valid user accounts and enumerate them.
Accellion Ftp Server
4.3
CVSSv2
CVE-2019-25046
The Web Client in Cerberus FTP Server Enterprise prior to 10.0.19 and 11.x prior to 11.0.4 allows XSS via an SVG document.
Cerberusftp Ftp Server
5
CVSSv2
CVE-2021-41634
A user enumeration vulnerability in MELAG FTP Server 2.2.0.4 allows an malicious user to identify valid FTP usernames.
Melag Ftp Server 2.2.0.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651
CVE-2024-34255
elevation of privilege
CVE-2024-25529
CVE-2024-4671
NULL pointer dereference
CVE-2024-25527
template injection
CVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »