Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ws ftp vulnerabilities and exploits
(subscribe to this query)
9.6
CVSSv3
CVE-2023-42657
In WS_FTP Server versions before 8.7.4 and 8.8.2, a directory traversal vulnerability exists. An attacker could leverage this vulnerability to perform file operations (delete, rename, rmdir, mkdir) on files and folders outside of their authorized WS_FTP folder path. Attackers co...
Progress Ws Ftp Server
8.8
CVSSv3
CVE-2023-42659
In WS_FTP Server versions before 8.7.6 and 8.8.4, an unrestricted file upload flaw has been identified. An authenticated Ad Hoc Transfer user has the ability to craft an API call which allows them to upload a file to a specified location on the underlying operating system hostin...
Progress Ws Ftp Server
NA
CVE-2002-1851
Buffer overflow in WS_FTP Pro 7.5 allows remote malicious users to execute code on a client system via unknown attack vectors.
Ipswitch Ws Ftp Pro 7.5
NA
CVE-2006-4974
Buffer overflow in Ipswitch WS_FTP Limited Edition (LE) 5.08 allows remote FTP servers to execute arbitrary code via a long response to a PASV command.
Ipswitch Ws Ftp Server 5.08 Limited Edition
1 EDB exploit
NA
CVE-2004-1883
Multiple buffer overflows in Ipswitch WS_FTP Server 4.0.2 (1) allow remote authenticated users to execute arbitrary code by causing a large error string to be generated by the ALLO handler, or (2) may allow remote FTP administrators to execute arbitrary code by causing a long hos...
Progress Ws Ftp Server 4.0.2
1 EDB exploit
NA
CVE-2004-1885
Ipswitch WS_FTP Server 4.0.2 allows remote authenticated users to execute arbitrary programs as SYSTEM by using the SITE command to modify certain iFtpSvc options that are handled by iftpmgr.exe.
Progress Ws Ftp Server 4.0.2
NA
CVE-1999-1078
WS_FTP Pro 6.0 uses weak encryption for passwords in its initialization files, which allows remote malicious users to easily decrypt the passwords and gain privileges.
Ipswitch Ws Ftp Pro 6.0
NA
CVE-2002-0826
Buffer overflow in WS_FTP FTP Server 3.1.1 allows remote authenticated users to execute arbitrary code via a long SITE CPWD command.
Progress Ws Ftp Server 3.1.1
NA
CVE-2007-0330
Buffer overflow in wsbho2k0.dll, as used by wsftpurl.exe, in Ipswitch WS_FTP 2007 Professional allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a long ftp:// URL in an HTML document, and possibly other vectors.
Ipswitch Ws Ftp Pro 2007
NA
CVE-2004-1643
WS_FTP 5.0.2 allows remote authenticated users to cause a denial of service (CPU consumption) via a CD command that contains an invalid path with a "../" sequence.
Progress Ws Ftp Server 5.0.2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgery
CVE-2024-34351
CVE-2024-1076
CVE-2024-25522
CVE-2024-34547
CVE-2024-4644
unauthorized
remote
CVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »