Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
accellion fta vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-27730
Accellion FTA 9_12_432 and previous versions is affected by argument injection via a crafted POST request to an admin endpoint. The fixed version is FTA_9_12_444 and later.
Accellion Fta
6.1
CVSSv3
CVE-2021-27731
Accellion FTA 9_12_432 and previous versions is affected by stored XSS via a crafted POST request to a user endpoint. The fixed version is FTA_9_12_444 and later.
Accellion Fta
9.8
CVSSv3
CVE-2021-27101
Accellion FTA 9_12_370 and previous versions is affected by SQL injection via a crafted Host header in a request to document_root.html. The fixed version is FTA_9_12_380 and later.
Accellion Fta
1 Article
7.8
CVSSv3
CVE-2021-27102
Accellion FTA 9_12_411 and previous versions is affected by OS command execution via a local web service call. The fixed version is FTA_9_12_416 and later.
Accellion Fta
1 Github repository
1 Article
9.8
CVSSv3
CVE-2021-27104
Accellion FTA 9_12_370 and previous versions is affected by OS command execution via a crafted POST request to various admin endpoints. The fixed version is FTA_9_12_380 and later.
Accellion Fta
3 Github repositories
1 Article
9.8
CVSSv3
CVE-2021-27103
Accellion FTA 9_12_411 and previous versions is affected by SSRF via a crafted POST request to wmProgressstat.html. The fixed version is FTA_9_12_416 and later.
Accellion Fta
1 Article
9.8
CVSSv3
CVE-2015-2857
Accellion File Transfer Appliance before FTA_9_11_210 allows remote malicious users to execute arbitrary code via shell metacharacters in the oauth_token parameter.
Accellion File Transfer Appliance
1 EDB exploit
9.8
CVSSv3
CVE-2016-2351
SQL injection vulnerability in home/seos/courier/security_key2.api on the Accellion File Transfer Appliance (FTA) before FTA_9_12_40 allows remote malicious users to execute arbitrary SQL commands via the client_id parameter.
Accellion File Transfer Appliance
7.8
CVSSv3
CVE-2016-2353
The Accellion File Transfer Appliance (FTA) before FTA_9_12_40 allows local users to add an SSH key to an arbitrary group, and consequently gain privileges, via unspecified vectors.
Accellion File Transfer Appliance
6.1
CVSSv3
CVE-2016-2350
Multiple cross-site scripting (XSS) vulnerabilities on the Accellion File Transfer Appliance (FTA) before FTA_9_12_40 allow remote malicious users to inject arbitrary web script or HTML via unspecified input to (1) getimageajax.php, (2) move_partition_frame.html, or (3) wmInfo.ht...
Accellion File Transfer Appliance
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »