SolarWinds Serv-U Managed File Transfer (MFT) Web client before 15.1.6 Hotfix 2 is vulnerable to Cross-Site Request Forgery in the file upload functionality via ?Command=Upload with the Dir and File parameters.
CPE | Name | Operator | Version |
---|---|---|---|
serv-u_managed_file_transfer | le | 15.1.5 | |
serv-u_managed_file_transfer | eq | 15.1.6 |