Directory traversal vulnerability in CrossFTP Pro 1.65a, and probably earlier, allows remote FTP servers to write arbitrary files via a "…" (dot dot backslash) in a filename.
CPE | Name | Operator | Version |
---|---|---|---|
crossftp_pro | eq | 1.31 | |
crossftp_pro | eq | 1.33 | |
crossftp_pro | eq | 1.35 | |
crossftp_pro | eq | 1.51 | |
crossftp_pro | eq | 1.52 | |
crossftp_pro | eq | 1.25 | |
crossftp_pro | eq | 1.14 | |
crossftp_pro | eq | 1.21 | |
crossftp_pro | eq | 1.19 | |
crossftp_pro | eq | 1.29 |