Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
proftpd vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2008-4242
ProFTPD 1.3.1 interprets long commands from an FTP client as multiple commands, which allows remote malicious users to conduct cross-site request forgery (CSRF) attacks and execute arbitrary FTP commands via a long ftp:// URI that leverages an existing session from the FTP client...
Proftpd Project Proftpd 1.3.1
605
VMScore
CVE-2007-1926
Cross-site scripting (XSS) vulnerability in JBMC Software DirectAdmin prior to 1.293 does not properly display log files, which allows remote authenticated users to inject arbitrary web script or HTML via (1) http or (2) ftp requests logged in /var/log/directadmin/security.log; (...
Jbmc Software Directadmin
570
VMScore
CVE-2005-2390
Multiple format string vulnerabilities in ProFTPD prior to 1.3.0rc2 allow malicious users to cause a denial of service or obtain sensitive information via (1) certain inputs to the shutdown message from ftpshut, or (2) the SQLShowInfo mod_sql directive.
Proftpd Project Proftpd 1.2.0 Rc1
Proftpd Project Proftpd 1.2.0 Rc2
Proftpd Project Proftpd 1.2.10 Rc3
Proftpd Project Proftpd 1.2.2
Proftpd Project Proftpd 1.2.0 Rc3
Proftpd Project Proftpd 1.2.1
Proftpd Project Proftpd 1.2.2 Rc2
Proftpd Project Proftpd 1.2.2 Rc3
Proftpd Project Proftpd 1.2.6
Proftpd Project Proftpd 1.2.6 Rc1
Proftpd Project Proftpd 1.2.8
Proftpd Project Proftpd 1.2.8 Rc1
Proftpd Project Proftpd 1.2.0 Pre10
Proftpd Project Proftpd 1.2.0 Pre9
Proftpd Project Proftpd 1.2.10 Rc1
Proftpd Project Proftpd 1.2.10 Rc2
Proftpd Project Proftpd 1.2.5
Proftpd Project Proftpd 1.2.5 Rc1
Proftpd Project Proftpd 1.2.7
Proftpd Project Proftpd 1.2.7 Rc1
Proftpd Project Proftpd 1.2.9 Rc1
Proftpd Project Proftpd 1.2.9 Rc2
518
VMScore
CVE-2009-3639
The mod_tls module in ProFTPD prior to 1.3.2b, and 1.3.3 prior to 1.3.3rc2, when the dNSNameRequired TLS option is enabled, does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 client certificate, which allows remo...
Proftpd Proftpd
Proftpd Proftpd 1.3.3
Proftpd Proftpd 1.3.2
Proftpd Proftpd 1.3.1
515
VMScore
CVE-2001-0136
Memory leak in ProFTPd 1.2.0rc2 allows remote malicious users to cause a denial of service via a series of USER commands, and possibly SIZE commands if the server has been improperly installed.
Proftpd Proftpd 1.2.0
Mandrakesoft Mandrake Linux 7.2
Debian Debian Linux 2.2
Conectiva Linux
3 EDB exploits
510
VMScore
CVE-2010-4052
Stack consumption vulnerability in the regcomp implementation in the GNU C Library (aka glibc or libc6) up to and including 2.11.3, and 2.12.x up to and including 2.12.2, allows context-dependent malicious users to cause a denial of service (resource exhaustion) via a regular exp...
Gnu Glibc 1.00
Gnu Glibc 1.01
Gnu Glibc 1.07
Gnu Glibc 1.06
Gnu Glibc 2.1.3.10
Gnu Glibc 2.1.9
Gnu Glibc 2.11.3
Gnu Glibc 2.12.2
Gnu Glibc 1.09.1
Gnu Glibc 1.09
Gnu Glibc 1.08
Gnu Glibc 2.1.2
Gnu Glibc 2.1.3
Gnu Glibc 2.10
Gnu Glibc 2.10.1
Gnu Glibc 1.05
Gnu Glibc 1.04
Gnu Glibc 2.1
Gnu Glibc 2.10.2
Gnu Glibc 2.12.0
Gnu Glibc 2.12.1
Gnu Glibc 2.11
2 EDB exploits
505
VMScore
CVE-2011-1137
Integer overflow in the mod_sftp (aka SFTP) module in ProFTPD 1.3.3d and previous versions allows remote malicious users to cause a denial of service (memory consumption leading to OOM kill) via a malformed SSH message.
Proftpd Proftpd 1.3.1
Proftpd Proftpd 1.3.2
Proftpd Proftpd 1.3.0
Proftpd Proftpd 1.3.3
Proftpd Proftpd 1.2.2
Proftpd Proftpd 1.2.0
Proftpd Proftpd 1.2.8
Proftpd Proftpd 1.2.9
Proftpd Proftpd 1.2.5
Proftpd Proftpd 1.2.7
Proftpd Proftpd 1.2.10
Proftpd Proftpd 1.2.4
Proftpd Proftpd 1.2.6
Proftpd Proftpd 1.2.1
Proftpd Proftpd
Proftpd Proftpd 1.2.3
1 EDB exploit
505
VMScore
CVE-2010-4051
The regcomp implementation in the GNU C Library (aka glibc or libc6) up to and including 2.11.3, and 2.12.x up to and including 2.12.2, allows context-dependent malicious users to cause a denial of service (application crash) via a regular expression containing adjacent bounded r...
Gnu Glibc 2.1.2
Gnu Glibc 2.11
Gnu Glibc 2.10.1
Gnu Glibc 1.00
Gnu Glibc 1.06
Gnu Glibc 2.1.1
Gnu Glibc 1.02
Gnu Glibc 1.07
Gnu Glibc 2.12.0
Gnu Glibc 2.1.1.6
Gnu Glibc 1.04
Gnu Glibc 1.01
Gnu Glibc 2.1
Gnu Glibc 1.09.1
Gnu Glibc 2.1.9
Gnu Glibc 2.12.1
Gnu Glibc 1.09
Gnu Glibc 2.10
Gnu Glibc 2.11.2
Gnu Glibc 1.03
Gnu Glibc 2.1.3.10
Gnu Glibc 2.11.3
1 EDB exploit
505
VMScore
CVE-2004-1602
ProFTPD 1.2.x, including 1.2.8 and 1.2.10, responds in a different amount of time when a given username exists, which allows remote malicious users to identify valid usernames by timing the server response.
Proftpd Proftpd
1 EDB exploit
505
VMScore
CVE-2001-1501
The glob functionality in ProFTPD 1.2.1, and possibly other versions allows remote malicious users to cause a denial of service (CPU and memory consumption) via commands with large numbers of wildcard and other special characters, as demonstrated using an ls command with multiple...
Proftpd Project Proftpd 1.2.1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »