Biscom Secure File Transfer (SFT) prior to 5.1.1082 and 6.x prior to 6.0.1011 allows user credential theft.
biscom secure file transfer