Lucene search
PRIOn knowledge basePRION:CVE-2023-42659HistoryNov 07, 2023 - 4:15 p.m.
Unrestricted file upload
2023-11-0716:15:00
PRIOn knowledge base
www.prio-n.com
5
ws_ftp server
unrestricted file upload
api call
ad hoc transfer
operating system
In WS_FTP Server versions prior to 8.7.6 and 8.8.4, an unrestricted file upload flaw has been identified. An authenticated Ad Hoc Transfer user has the ability to craft an API call which allows them to upload a file to a specified location on the underlying operating system hosting the WS_FTP Server application.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ws_ftp_server | ge | 8.8.0 | |
| ws_ftp_server | lt | 8.8.4 | |
| ws_ftp_server | lt | 8.7.6 |
Related
cve
cve
CVE-2023-42659
2023-11-07 16:15:28
nvd
nvd
CVE-2023-42659
2023-11-07 16:15:28
nessus
nessus
Progress WS_FTP Server < 8.7.6, 8.8.x < 8.8.4 Arbitrary File Upload
2024-01-30 00:00:00
cvelist
cvelist
CVE-2023-42659 WS_FTP Server Arbitrary File Upload
2023-11-07 15:13:40