Argument injection vulnerability in WinSCP 3.8.1 build 328 allows remote malicious users to upload or download arbitrary files via encoded spaces and double-quote characters in a scp or sftp URI.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
winscp winscp 3.8.1 |