Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ws ftp server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-40046
In WS_FTP Server versions before 8.7.4 and 8.8.2, a SQL injection vulnerability exists in the WS_FTP Server manager interface. An attacker may be able to infer information about the structure and contents of the database and execute SQL statements that alter or delete database e...
Progress Ws Ftp Server
NA
CVE-2023-40047
In WS_FTP Server version before 8.8.2, a stored cross-site scripting (XSS) vulnerability exists in WS_FTP Server's Management module. An attacker with administrative privileges could import a SSL certificate with malicious attributes containing cross-site scripting payloads...
Progress Ws Ftp Server
NA
CVE-2023-40048
In WS_FTP Server version before 8.8.2, the WS_FTP Server Manager interface was missing cross-site request forgery (CSRF) protection on a POST transaction corresponding to a WS_FTP Server administrative function.
Progress Ws Ftp Server
NA
CVE-2023-40049
In WS_FTP Server version before 8.8.2, an unauthenticated user could enumerate files under the 'WebServiceHost' directory listing.
Progress Ws Ftp Server
5
CVSSv2
CVE-2004-1643
WS_FTP 5.0.2 allows remote authenticated users to cause a denial of service (CPU consumption) via a CD command that contains an invalid path with a "../" sequence.
Progress Ws Ftp Server 5.0.2
1 EDB exploit
NA
CVE-2022-36968
In Progress WS_FTP Server prior to version 8.7.3, forms within the administrative interface did not include a nonce to mitigate the risk of cross-site request forgery (CSRF) attacks.
Progress Ipswitch Ws Ftp Server
5
CVSSv2
CVE-2004-1135
Multiple buffer overflows in WS_FTP Server 5.03 2004.10.14 allow remote malicious users to cause a denial of service (service crash) via long (1) SITE, (2) XMKD, (3) MKD, and (4) RNFR commands.
Ipswitch Ws Ftp Server 5.03
2 EDB exploits
7.5
CVSSv2
CVE-2001-1021
Buffer overflows in WS_FTP 2.02 allow remote malicious users to execute arbitrary code via long arguments to (1) DELE, (2) MDTM, (3) MLST, (4) MKD, (5) RMD, (6) RNFR, (7) RNTO, (8) SIZE, (9) STAT, (10) XMKD, or (11) XRMD.
Progress Ws Ftp Server 2.0.2
2 EDB exploits
7.2
CVSSv2
CVE-2004-1883
Multiple buffer overflows in Ipswitch WS_FTP Server 4.0.2 (1) allow remote authenticated users to execute arbitrary code by causing a large error string to be generated by the ALLO handler, or (2) may allow remote FTP administrators to execute arbitrary code by causing a long hos...
Progress Ws Ftp Server 4.0.2
1 EDB exploit
7.2
CVSSv2
CVE-2004-1885
Ipswitch WS_FTP Server 4.0.2 allows remote authenticated users to execute arbitrary programs as SYSTEM by using the SITE command to modify certain iFtpSvc options that are handled by iftpmgr.exe.
Progress Ws Ftp Server 4.0.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »