Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
a-ftp vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2001-0794
Buffer overflow in A-FTP Anonymous FTP Server allows remote malicious users to cause a denial of service via a long USER command.
A-ftp Anonymous Ftp Server
NA
CVE-2006-3532
PHP file inclusion vulnerability in includes/edit_new.php in Pivot 1.30 RC2 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a FTP URL or full file path in the Paths[extensions_path] parameter.
Pivot Pivot 1.30 Rc2
1 EDB exploit
NA
CVE-2008-1478
Home FTP Server 1.4.5.89 allows remote malicious users to cause a denial of service (crash) by opening a FTP passive mode connection, then closing the original FTP connection. NOTE: some of these details are obtained from third party information.
Ari Pikivirta Home Ftp Server 1.4.5.89
1 EDB exploit
NA
CVE-2006-2866
PHP remote file inclusion vulnerability in layout/prepend.php in DotClear 1.2.4 and previous versions allows remote malicious users to execute arbitrary PHP code via a FTP URL in the blog_dc_path parameter, which passes file_exists() and is_dir() tests on PHP 5.
Dotclear Dotclear 1.2.1
Dotclear Dotclear 1.2.2
Dotclear Dotclear 1.2.3
Dotclear Dotclear 1.2.4
1 EDB exploit
5.7
CVSSv3
CVE-2019-7231
The ABB IDAL FTP server is vulnerable to a buffer overflow when a long string is sent by an authenticated attacker. This overflow is handled, but terminates the process. An authenticated attacker can send a FTP command string of 472 bytes or more to overflow a buffer, causing an ...
Abb Pb610 Panel Builder 600 Firmware
7.5
CVSSv3
CVE-2018-7838
A CWE-119 Buffer Errors vulnerability exists in Modicon M580 CPU - BMEP582040, all versions before V2.90, and Modicon Ethernet Module BMENOC0301, all versions before V2.16, which could cause denial of service on the FTP service of the controller or the Ethernet BMENOC module when...
Schneider-electric Bmenoc0301 Firmware
Schneider-electric Modicon M580 Bmep584040 Firmware
Schneider-electric Modicon M580 Bmep586040 Firmware
Schneider-electric Bmeh586040 Firmware
Schneider-electric Modicon M580 Bmep581020 Firmware
Schneider-electric Modicon M580 Bmep582020 Firmware
Schneider-electric Modicon M580 Bmep582040 Firmware
Schneider-electric Modicon M580 Bmep583020 Firmware
Schneider-electric Modicon M580 Bmep583040 Firmware
Schneider-electric Modicon M580 Bmep584020 Firmware
Schneider-electric Modicon M580 Bmep585040 Firmware
Schneider-electric Modicon M580 Bmep582040s Firmware
Schneider-electric Bmeh582040 Firmware
6.5
CVSSv3
CVE-2018-18371
The ASG/ProxySG FTP proxy WebFTP mode allows intercepting FTP connections where a user accesses an FTP server via a ftp:// URL in a web browser. An information disclosure vulnerability in the WebFTP mode allows a malicious user to obtain plaintext authentication credentials for a...
Broadcom Symantec Proxysg
Broadcom Advanced Secure Gateway
Broadcom Symantec Proxysg 6.6
Broadcom Advanced Secure Gateway 6.6
6.1
CVSSv3
CVE-2018-18370
The ASG/ProxySG FTP proxy WebFTP mode allows intercepting FTP connections where a user accesses an FTP server via a ftp:// URL in a web browser. A stored cross-site scripting (XSS) vulnerability in the WebFTP mode allows a remote malicious user to inject malicious JavaScript code...
Broadcom Advanced Secure Gateway 6.6
Broadcom Advanced Secure Gateway
Broadcom Symantec Proxysg
Broadcom Symantec Proxysg 6.6
9.8
CVSSv3
CVE-2019-12815
An arbitrary file copy vulnerability in mod_copy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306.
Proftpd Proftpd
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Siemens Simatic Cp 1543-1 Firmware
2 Github repositories
7.5
CVSSv3
CVE-2019-18217
ProFTPD prior to 1.3.6b and 1.3.7rc prior to 1.3.7rc2 allows remote unauthenticated denial-of-service due to incorrect handling of overly long commands because main.c in a child process enters an infinite loop.
Proftpd Proftpd 1.3.6
Proftpd Proftpd 1.3.7
Proftpd Proftpd
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »