Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
progress ws ftp server vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2001-1021
Buffer overflows in WS_FTP 2.02 allow remote malicious users to execute arbitrary code via long arguments to (1) DELE, (2) MDTM, (3) MLST, (4) MKD, (5) RMD, (6) RNFR, (7) RNTO, (8) SIZE, (9) STAT, (10) XMKD, or (11) XRMD.
Progress Ws Ftp Server 2.0.2
2 EDB exploits
7.2
CVSSv2
CVE-2004-1885
Ipswitch WS_FTP Server 4.0.2 allows remote authenticated users to execute arbitrary programs as SYSTEM by using the SITE command to modify certain iFtpSvc options that are handled by iftpmgr.exe.
Progress Ws Ftp Server 4.0.2
9
CVSSv2
CVE-2008-0590
Buffer overflow in Ipswitch WS_FTP Server with SSH 6.1.0.0 allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via a long opendir command.
Progress Ws Ftp Server 6.1.0.0
1 EDB exploit
5
CVSSv2
CVE-2004-1643
WS_FTP 5.0.2 allows remote authenticated users to cause a denial of service (CPU consumption) via a CD command that contains an invalid path with a "../" sequence.
Progress Ws Ftp Server 5.0.2
1 EDB exploit
NA
CVE-2022-27665
Reflected XSS (via AngularJS sandbox escape expressions) exists in Progress Ipswitch WS_FTP Server 8.6.0. This can lead to execution of malicious code and commands on the client due to improper handling of user-provided input. By inputting malicious payloads in the subdirectory s...
Progress Ws Ftp Server 8.6.0
1 Github repository
7.2
CVSSv2
CVE-2004-1883
Multiple buffer overflows in Ipswitch WS_FTP Server 4.0.2 (1) allow remote authenticated users to execute arbitrary code by causing a large error string to be generated by the ALLO handler, or (2) may allow remote FTP administrators to execute arbitrary code by causing a long hos...
Progress Ws Ftp Server 4.0.2
1 EDB exploit
NA
CVE-2022-36967
In Progress WS_FTP Server prior to version 8.7.3, multiple reflected cross-site scripting (XSS) vulnerabilities exist in the administrative web interface. It is possible for a remote malicious user to inject arbitrary JavaScript into a WS_FTP administrator's web session. Thi...
Progress Ipswitch Ws Ftp Server
5
CVSSv2
CVE-2019-12145
A Directory Traversal issue exists in SSHServerAPI.dll in Progress ipswitch WS_FTP Server 2018 prior to 8.6.1. An attacker can supply a string using special patterns via the SCP protocol to disclose path names on the host operating system.
Ipswitch Ws Ftp Server
6.4
CVSSv2
CVE-2019-12146
A Directory Traversal issue exists in SSHServerAPI.dll in Progress ipswitch WS_FTP Server 2018 prior to 8.6.1. Attackers have the ability to abuse a flaw in the SCP listener by crafting strings using specific patterns to write files and create directories outside of their authori...
Ipswitch Ws Ftp Server
7.5
CVSSv2
CVE-2019-12144
An issue exists in SSHServerAPI.dll in Progress ipswitch WS_FTP Server 2018 prior to 8.6.1. Attackers have the ability to abuse a path traversal vulnerability using the SCP protocol. Attackers who leverage this flaw could also obtain remote code execution by crafting a payload th...
Ipswitch Ws Ftp Server
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-25525
CVE-2024-4652
CVE-2024-1438
CVE-2024-4671
CVE-2024-34351
arbitrary
CVE-2024-4650
SQL injection
overflow
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3