Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ftp project ftp vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2020-36488
An issue in the FTP server of Sky File v2.1.0 allows malicious users to perform directory traversal via `/null//` path commands.
Sky File Project Sky File 2.1.0
10
CVSSv2
CVE-2013-2512
The ftpd gem 0.2.1 for Ruby allows remote malicious users to execute arbitrary OS commands via shell metacharacters in a LIST or NLST command argument within FTP protocol traffic.
Ftpd Project Ftpd 0.2.1
5
CVSSv2
CVE-2005-0851
FileZilla FTP server prior to 0.9.6, when using MODE Z (zlib compression), allows remote malicious users to cause a denial of service (infinite loop) via certain file uploads or directory listings.
Filezilla-project Filezilla Server
4.6
CVSSv2
CVE-2007-5201
The FTP backend for Duplicity prior to 0.4.9 sends the password as a command line argument when calling ncftp, which might allow local users to read the password by listing the process and its arguments.
Duplicity Project Duplicity
4.3
CVSSv2
CVE-2022-29620
FileZilla v3.59.0 allows malicious users to obtain cleartext passwords of connected SSH or FTP servers via a memory dump.- NOTE: the vendor does not consider this a vulnerability
Filezilla-project Filezilla Client 3.59.0
5
CVSSv2
CVE-2020-23040
Sky File v2.1.0 contains a directory traversal vulnerability in the FTP server which allows malicious users to access sensitive data and files via 'null' path commands.
Sky File Project Sky File 2.1.0
5
CVSSv2
CVE-2005-0850
FileZilla FTP server prior to 0.9.6 allows remote malicious users to cause a denial of service via a request for a filename containing an MS-DOS device name such as CON, NUL, COM1, LPT1, and others.
Filezilla-project Filezilla Server
7.5
CVSSv2
CVE-2020-35173
The Amaze File Manager application prior to 3.4.2 for Android does not properly restrict intents for controlling the FTP server (aka services.ftpservice.FTPReceiver.ACTION_START_FTPSERVER and services.ftpservice.FTPReceiver.ACTION_STOP_FTPSERVER).
Amaze File Manager Project Amaze File Manager
NA
CVE-2016-15003
A vulnerability has been found in FileZilla Client 3.17.0.0 and classified as problematic. This vulnerability affects unknown code of the file C:\Program Files\FileZilla FTP Client\uninstall.exe of the component Installer. The manipulation leads to unquoted search path. The attac...
Filezilla-project Filezilla Client 3.17.0
9
CVSSv2
CVE-2020-7998
An arbitrary file upload vulnerability has been discovered in the Super File Explorer app 1.0.1 for iOS. The vulnerability is located in the developer path that is accessible and hidden next to the root path. By default, there is no password set for the FTP or Web UI service.
Super File Explorer Project Super File Explorer 1.0.1
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »