Froxlor has an authorization bypass in FTP shell assignment via missing server-side `available_shells` enforcement

Summary Froxlor 2.3.6 lets administrators configure system.availableshells as the approved shell list that customers may assign to FTP users. However, the server-side FTP account handlers do not enforce that whitelist when processing add or edit requests. As a result, an authenticated customer wi...

CVE-2018-25226 FTPShell Server 6.83 Denial of Service via Account Name

FTPShell Server 6.83 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the account name field. Attackers can trigger a denial of service by pasting a 417-byte payload into the 'Account name to ban' parameter...

PT-2026-27007

FTP Shell Server 6.83 contains a buffer overflow vulnerability in the 'Account name to ban' field that allows local attackers to execute arbitrary code by supplying a crafted string. Attackers can inject shellcode through the account name parameter in the Manage FTP Accounts dialog to overwrite t...

ZesleCP operating system command injection vulnerability

ZesleCP is a Linux server control panel software developed by Zesle Corporation in Canada. Version ZesleCP 3.1.9 contains a vulnerability related to operating system command injection. This vulnerability stems from remote code execution after authentication, potentially allowing the creation of...

CVE-2021-47794 ZesleCP 3.1.9 - Remote Code Execution (RCE) (Authenticated)

ZesleCP 3.1.9 contains an authenticated remote code execution vulnerability that allows attackers to create malicious FTP accounts with shell injection payloads. Attackers can exploit the FTP account creation endpoint by injecting a reverse shell command that establishes a network connection to a...

PT-2026-3166

ZesleCP 3.1.9 contains an authenticated remote code execution vulnerability that allows attackers to create malicious FTP accounts with shell injection payloads. Attackers can exploit the FTP account creation endpoint by injecting a reverse shell command that establishes a network connection to a...

EUVD-2018-13402

Malware in sbrugna...

CVE-2025-47812

In Wing FTP Server before 7.4.4. the user and admin web interfaces mishandle '\0' bytes, ultimately allowing injection of arbitrary Lua code into user session files. This can be used to execute arbitrary system commands with the privileges of the FTP service root or SYSTEM by default. This is thu...

CVE-2025-47812

In Wing FTP Server before 7.4.4. the user and admin web interfaces mishandle '\0' bytes, ultimately allowing injection of arbitrary Lua code into user session files. This can be used to execute arbitrary system commands with the privileges of the FTP service root or SYSTEM by default. This is thu...

CVE-2018-20864

cPanel before 76.0.8 allows a persistent Virtual FTP accounts after removal of its associated domain SEC-454...

FTPShell Server 6.85 Buffer Overflow

!/usr/bin/python Exploit Title: FTPShell Server 6.85 - Add Account Buffer Overflow Date: December 2nd, 2019 Exploit Author: boku Vendor Homepage: http://www.ftpshell.com/index.htm SOftware Link: http://www.ftpshell.com/downloadserver.htm Program Name: FTPShell Server Secure Plus edition Version:...

CVE-2018-20864

CVE-2018-20864 affects cPanel before 76.0.8. The vulnerability allows a persistent Virtual FTP account after removal of its associated domain (SEC-454). Public details in connected sources describe the affected product and the outcome, but do not provide explicit root-cause analysis or remediatio...

FTPShell Server 6.83 - 'Account name to ban' Denial of Service (PoC)

Exploit Title: FTPShell Server 6.83 - Denial of Service PoC Discovery by: Victor Mondragón Discovery Date: 2018-02-20 Vendor Homepage: http://www.ftpshell.com/index.htm Software Link: http://www.ftpshell.com/downloadserver.htm Tested Version: 6.83 Tested on: Windows 7 x64 Service Pack 1 Steps to...

Easy Hosting Control Panel 0.37.12.b Cross Site Scripting Add FTP Account

Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/EHCP-v0.37.12.b-XSS-FTP-BACKDOOR-ACCOUNT.txt + ISR: Apparition Security Greetz: indoushka|Eduardo|Dirty0tis Vendor: ============= www.ehcp.net Product: =========== Easy Hosting Control...

FTPShell Server 6.36 - .csv Local Denial of Service Exploit

Exploit for windows platform in category dos / poc Exploit FTPShell server 6.36 '.csv' CrashPoC Author: albalawisultan Tested on:win7 st :http://www.ftpshell.com/download.htm 1-open FTPShell Server Administrator 2-manage Ftp accounts 3-import from csv ban=...

FTPShell Server 6.36 - .csv Local Denial of Service

FTPShell Server 6.36 - .csv Local Denial of Service Exploit FTPShell server 6.36 '.csv' CrashPoC Author: albalawisultan Tested on:win7 st :http://www.ftpshell.com/download.htm 1-open FTPShell Server Administrator 2-manage Ftp accounts 3-import from csv ban=...

GE Healthcare Discovery NM 750b Trust Management Vulnerability

The GE Healthcare Discovery NM 750b is a high-end molecular breast imaging device from General Electric GE for the healthcare industry. A security vulnerability exists in the GE Healthcare Discovery NM 750b that stems from the use of '2getin' as a password for the Telnet and FTP insite accounts. ...

Kloxo 6.1.18 Stable - CSRF Vulnerability

No description provided by source. Exploit Title :Kloxo 6.1.18 Stable CSRF Vulnerability Vendor Homepage :http://lxcenter.org/software/kloxo Version :6.1.18 Exploit Author :Necmettin COSKUN =@babayarisi Blog :http://www.ncoskun.com http://www.grisapka.org Discovery date :03/12/2014 CVE :N/A Kloxo...

Vivotek Cameras Sensitive Information Disclosure

No description provided by source. Exploit Title: Vivotek Full Data Source CONFIG Date: 09/07/12 Author: Alejandro Leon Morales GothicX Author Mail: Gothicxatfreaknetworkdotin Author Web: www.undermx.blogspot.mx Sofware web: www.vivotek.com Vulnerable version: all Tested on: Microsoft windows 7 /...

UPS Web/SNMP-Manager CS121 Login Bypass

!/usr/bin/perl -w use IO::Socket; use constant MAXBYTES = scalar 1024; $socket = IO::Socket::INET-new PeerPort = 4000, PeerAddr = $ARGV0, Type = SOCKDGRAM, Proto = 'udp'; $socket-send""; $socket-recv$inline, MAXBYTES; print "UPS: $inline \n"; $socket-send"show syspar"; $socket-recv$inline,...