CVE-2025-3831 Exposed SFTP server

Log files uploaded during troubleshooting by the Harmony SASE agent may have been accessible to unauthorized parties...

CVE-2025-3831 Exposed SFTP server

Log files uploaded during troubleshooting by the Harmony SASE agent may have been accessible to unauthorized parties...

CVE-2024-52504

A vulnerability has been identified in SIPROTEC 4 6MD61 All versions, SIPROTEC 4 6MD63 All versions, SIPROTEC 4 6MD66 All versions, SIPROTEC 4 6MD665 All versions, SIPROTEC 4 7SA522 All versions, SIPROTEC 4 7SA6 All versions V4.78, SIPROTEC 4 7SD5 All versions V4.78, SIPROTEC 4 7SD610 All version...

CVE-2024-52504

A vulnerability has been identified in SIPROTEC 4 6MD61 All versions, SIPROTEC 4 6MD63 All versions, SIPROTEC 4 6MD66 All versions, SIPROTEC 4 6MD665 All versions, SIPROTEC 4 7SA522 All versions, SIPROTEC 4 7SA6 All versions V4.78, SIPROTEC 4 7SD5 All versions V4.78, SIPROTEC 4 7SD610 All version...

Siemens多款产品 代码问题漏洞

Siemens SIPROTEC 4 is a multifunction relay from Siemens Germany. A code issue vulnerability exists in various Siemens products that stems from mishandling of a file transfer operation, which could result in a denial of service. The following products are affected: SIPROTEC 4 6MD61, 6MD63, 6MD66,...

BIT-LIBPYTHON-2021-4189

A flaw was found in Python, specifically in the FTP File Transfer Protocol client library in PASV passive mode. The issue is how the FTP client trusts the host from the PASV response by default. This flaw allows an attacker to set up a malicious FTP server that can trick FTP clients into connecti...

Linux Distros Unpatched Vulnerability : CVE-2020-1934

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Apache HTTP Server 2.4.0 to 2.4.41, modproxyftp may use uninitialized memory when proxying to a malicious FTP server. CVE-2020-1934 Note that Nessus relies o...

CVE-2025-8758

A vulnerability was found in TRENDnet TEW-822DRE FW103B02. It has been classified as problematic. This affects an unknown part of the component vsftpd. The manipulation leads to least privilege violation. Attacking locally is a requirement. The complexity of an attack is rather high. The...

CVE-2025-8758 TRENDnet TEW-822DRE vsftpd least privilege violation

A vulnerability was found in TRENDnet TEW-822DRE FW103B02. It has been classified as problematic. This affects an unknown part of the component vsftpd. The manipulation leads to least privilege violation. Attacking locally is a requirement. The complexity of an attack is rather high. The...

CVE-2025-50927

A reflected cross-site scripting XSS vulnerability in the List All FTP User Function in EHCP v20.04.1.b allows authenticated attackers to execute arbitrary JavaScript via injecting a crafted payload into the ftpusername parameter...

CVE-2025-50927

CVE-2025-50927 concerns EHCP v20.04.1.b where the List All FTP User Function is vulnerable to reflected XSS via the ftpusername parameter. Authenticated attackers can inject JavaScript, potentially enabling session hijacking or redirection to malicious sites. Public writeups describe the vulnerab...

PT-2025-32385 · Ehcp · Ehcp

Name of the Vulnerable Software and Affected Versions: EHCP version 20.04.1.b Description: A reflected cross-site scripting XSS vulnerability exists in the List All FTP User Function. Authenticated attackers can execute arbitrary JavaScript by injecting a crafted payload into the ftpusername...

[SECURITY] Fedora 41 Update: libssh-0.11.2-1.fc41

The ssh library was designed to be used by programmers needing a working SSH implementation by the mean of a library. The complete control of the client is made by the programmer. With libssh, you can remotely execute programs, trans fer files, use a secure and transparent tunnel for your remote...

CVE-2025-54792

LocalSend is an open-source app to securely share files and messages with nearby devices over local networks without needing an internet connection. In versions 1.16.1 and below, a critical Man-in-the-Middle MitM vulnerability in the software's discovery protocol allows an unauthenticated attacke...

The vulnerability in the FTP-server administrator web interface of Wing allows a hacker to increase their privileges.

The vulnerability in the FTP server administrator’s web interface of Wing is related to insecure management of privileges. Exploiting this vulnerability could allow a malicious actor to enhance their privileges remotely...

CVE-2025-54792

LocalSend is an open-source app to securely share files and messages with nearby devices over local networks without needing an internet connection. In versions 1.16.1 and below, a critical Man-in-the-Middle MitM vulnerability in the software's discovery protocol allows an unauthenticated attacke...

freeFTPd 安全漏洞

freeFTPd is an open source FTP File Transfer Protocol server by freeFTPd. A security vulnerability exists in freeFTPd 1.0.10 and earlier versions, which stems from improper boundary checking when handling FTP PASS commands, and could lead to memory corruption and arbitrary code execution...

The vulnerability of the FTP service provided by TOTOLINK N600R and X2000R microprogrammable router software allows attackers to increase their privileges.

The vulnerability of the FTP service provided by TOTOLINK N600R and X2000R microprogrammed router software is related to the improper assignment of privileges. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely...

CVE-2025-8181

A vulnerability, which was classified as critical, was found in TOTOLINK N600R and X2000R 1.0.0.1. This affects an unknown part of the file vsftpd.conf of the component FTP Service. The manipulation leads to least privilege violation. It is possible to initiate the attack remotely...

libssh 输入验证错误漏洞

libssh is a C development package from the libssh organization for accessing SSH services, which are capable of executing remote commands, file transfers, as well as providing a secure transport channel for remote programs. An input validation error vulnerability exists in libssh that stems from ...