CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
71.7%
Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remote attackers to copy an arbitrary user’s home folder via a Move action with a … (dot dot) in the src parameter.
Vendor | Product | Version | CPE |
---|---|---|---|
southrivertech | titan_ftp_server | * | cpe:2.3:a:southrivertech:titan_ftp_server:*:*:*:*:*:*:*:* |
southrivertech | titan_ftp_server | 10.0.1733 | cpe:2.3:a:southrivertech:titan_ftp_server:10.0.1733:*:*:*:*:*:*:* |
southrivertech | titan_ftp_server | 10.01.1740 | cpe:2.3:a:southrivertech:titan_ftp_server:10.01.1740:*:*:*:*:*:*:* |
southrivertech | titan_ftp_server | 10.30 | cpe:2.3:a:southrivertech:titan_ftp_server:10.30:*:*:*:*:*:*:* |