Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ws ftp vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2008-3734
Format string vulnerability in Ipswitch WS_FTP Home 2007.0.0.2 and WS_FTP Professional 2007.1.0.0 allows remote FTP servers to cause a denial of service (application crash) or possibly execute arbitrary code via format string specifiers in a connection greeting (response).
Ipswitch Ws Ftp Home 2007.0.0.2
Ipswitch Ws Ftp Pro 2007.1.0.0
1 EDB exploit
4.6
CVSSv2
CVE-1999-1170
IPswitch IMail allows local users to gain additional privileges and modify or add mail accounts by setting the "flags" registry key to 1920.
Ipswitch Imail 5.0
Progress Ws Ftp Server 1.0.1.e
Progress Ws Ftp Server 1.0.2.e
1 EDB exploit
4.6
CVSSv2
CVE-1999-1171
IPswitch WS_FTP allows local users to gain additional privileges and modify or add mail accounts by setting the "flags" registry key to 1920.
Ipswitch Imail 5.0
Progress Ws Ftp Server 1.0.1.e
Progress Ws Ftp Server 1.0.2.e
1 EDB exploit
4.6
CVSSv2
CVE-2017-16513
Ipswitch WS_FTP Professional prior to 12.6.0.3 has buffer overflows in the local search field and the backup locations field, aka WSCLT-1729.
Ipswitch Ws Ftp
1 EDB exploit
4.3
CVSSv2
CVE-2007-4555
Cross-site scripting (XSS) vulnerability in Ipswitch WS_FTP allows remote malicious users to inject arbitrary web script or HTML via arguments to a valid command, which is not properly handled when it is displayed by the view log option in the administration interface. NOTE: this...
Ipswitch Ws Ftp
NA
CVE-2023-24029
In Progress WS_FTP Server prior to 8.8, it is possible for a host administrator to elevate their privileges via the administrative interface due to insufficient authorization controls applied on user modification workflows.
Progress Ws Ftp Server
NA
CVE-2023-40044
In WS_FTP Server versions before 8.7.4 and 8.8.2, a pre-authenticated attacker could leverage a .NET deserialization vulnerability in the Ad Hoc Transfer module to execute remote commands on the underlying WS_FTP Server operating system.
Progress Ws Ftp Server
1 Github repository
NA
CVE-2023-40045
In WS_FTP Server versions before 8.7.4 and 8.8.2, a reflected cross-site scripting (XSS) vulnerability exists in WS_FTP Server's Ad Hoc Transfer module. An attacker could leverage this vulnerability to target WS_FTP Server users with a specialized payload which results in t...
Progress Ws Ftp Server
NA
CVE-2023-40046
In WS_FTP Server versions before 8.7.4 and 8.8.2, a SQL injection vulnerability exists in the WS_FTP Server manager interface. An attacker may be able to infer information about the structure and contents of the database and execute SQL statements that alter or delete database e...
Progress Ws Ftp Server
NA
CVE-2023-40047
In WS_FTP Server version before 8.8.2, a stored cross-site scripting (XSS) vulnerability exists in WS_FTP Server's Management module. An attacker with administrative privileges could import a SSL certificate with malicious attributes containing cross-site scripting payloads...
Progress Ws Ftp Server
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »