Lucene search
K

5 matches found

Nuclei
Nuclei
added 8 hours ago74 views

Wing FTP Server <= 7.4.3 - Path Disclosure via Overlong UID Cookie

Wing FTP Server versions prior to 7.4.4 are vulnerable to an authenticated information disclosure vulnerability CVE-2025-47813. The vulnerability occurs due to improper validation of the 'UID' session cookie in the /loginok.html endpoint. Supplying an overlong UID value causes the server to respo...

10CVSS6.8AI score0.95343EPSS
Exploits24References2
OSV
OSV
added 2025/07/10 5:15 p.m.4 views

CVE-2025-47813

loginok.html in Wing FTP Server before 7.4.4 discloses the full local installation path of the application when using a long value in the UID cookie...

4.3CVSS5.8AI score0.95343EPSS
Exploits24References3
CVE
CVE
added 2025/07/10 12:0 a.m.64 views

CVE-2025-47813

Technical details for CVE-2025-47813 are not publicly available in the provided connected documents. Monitor for updates. Initial description notes an information disclosure related to UID cookie length, but no technical specifics are provided here.

4.3CVSS6.4AI score0.95343EPSS
In wildExploits24References4Affected Software1
Cvelist
Cvelist
added 2025/07/10 12:0 a.m.35 views

CVE-2025-47813

loginok.html in Wing FTP Server before 7.4.4 discloses the full local installation path of the application when using a long value in the UID cookie...

4.3CVSS0.56366EPSS
Exploits24References3
Circl
Circl
added 2025/07/01 7:46 p.m.17 views

CVE-2025-47813

creationtimestamp| type| source ---|---|--- 2025-07-01 19:46:24+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-47813.yaml 2025-07-01 19:46:24+00:00| confirmed|...

4.3CVSS6.8AI score0.56366EPSS
Exploits24References39
Rows per page
Query Builder