Lucene search
K

898 matches found

Vulnrichment
Vulnrichment
added 2026/03/11 8:14 p.m.3 views

CVE-2026-32108 Copyparty ftp/sftp: Sharing a single file did not fully restrict source-folder access

Copyparty is a portable file server. Prior to 1.20.12, there was a missing permission-check in the shares feature the shr global-option. This vulnerability only applies when the shares feature is used for the specific purpose of creating a share of just a single file inside a folder or either the...

2.3CVSS5.8AI score0.00274EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/11 8:14 p.m.4 views

CVE-2026-32108

Copyparty is a portable file server. Prior to 1.20.12, there was a missing permission-check in the shares feature the shr global-option. This vulnerability only applies when the shares feature is used for the specific purpose of creating a share of just a single file inside a folder or either the...

7.5CVSS5.8AI score0.00344EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/03/11 8:14 p.m.31 views

CVE-2026-32108 Copyparty ftp/sftp: Sharing a single file did not fully restrict source-folder access

Copyparty is a portable file server. Prior to 1.20.12, there was a missing permission-check in the shares feature the shr global-option. This vulnerability only applies when the shares feature is used for the specific purpose of creating a share of just a single file inside a folder or either the...

2.3CVSS0.00274EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/11 6:30 p.m.5 views

EUVD-2025-208591

An issue was discovered in Lantronix EDS3000PS 3.1.0.0R2. The host parameter of the TFTP client in the Filesystem Browser page is not properly sanitized. This can be exploited to escape from the original command and execute an arbitrary one with root privileges...

9.8CVSS5.9AI score0.00431EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.4 views

PT-2026-24573

Name of the Vulnerable Software and Affected Versions MiCode FileExplorer affected versions not specified Description The software contains an authentication bypass in the embedded SwiFTP FTP server component. This allows network attackers to log in without valid credentials by sending arbitrary...

9.8CVSS5.9AI score0.00481EPSS
Exploits0References11
CNNVD
CNNVD
added 2026/03/11 12:0 a.m.10 views

Copyparty 安全漏洞

Copyparty is a portable file server developed by Ed’s individual developer. Versions of Copyparty prior to 1.20.12 contained security vulnerabilities. These vulnerabilities stemmed from the lack of permission checks in the sharing function, which could allow users to access other files within...

6.5CVSS5.8AI score0.00274EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.3 views

PT-2026-24823

Copyparty is a portable file server. Prior to 1.20.12, there was a missing permission-check in the shares feature the shr global-option. This vulnerability only applies when the shares feature is used for the specific purpose of creating a share of just a single file inside a folder or either the...

7.5CVSS5.8AI score0.00344EPSS
Exploits0References6
EUVD
EUVD
added 2026/03/10 6:31 p.m.2 views

EUVD-2025-208468

An unauthenticated remote attacker may use hardcodes credentials to get access to the previously activated FTP Server with limited read and write privileges...

6.5CVSS5.8AI score0.00387EPSS
Exploits0References5
EUVD
EUVD
added 2026/03/10 6:31 p.m.4 views

EUVD-2025-208467

An unauthenticated remote attacker may use hardcodes credentials to get access to the previously activated FTP Server with limited read and write privileges...

6.5CVSS5.8AI score0.00387EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/03/10 8:26 a.m.2 views

CVE-2025-41710 Use of Hard-coded Credentials in power analyzer

An unauthenticated remote attacker may use hardcodes credentials to get access to the previously activated FTP Server with limited read and write privileges...

6.5CVSS5.8AI score0.00387EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.6 views

Janitza UMG 96RM-E 24V和Janitza UMG 96RM-E 230V 信任管理问题漏洞

Both Janitza UMG 96RM-E 24V and Janitza UMG 96RM-E 230V are multi-functional power quality analyzers from the German company Janitza. There are vulnerabilities related to trust management in both models 5222063 for Janitza UMG 96RM-E 24V and 5222062 for Janitza UMG 96RM-E 230V. These...

6.5CVSS5.8AI score0.00387EPSS
Exploits0References5
Redos
Redos
added 2026/03/10 12:0 a.m.2 views

ROS-20260310-73-0019

Vulnerability in vsftpd related to integer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

6.5CVSS5.9AI score0.00737EPSS
Exploits0
NVD
NVD
added 2026/03/04 8:16 a.m.4 views

CVE-2026-28778

International Datacasting Corporation IDC SFX Series SuperFlex Satellite Receiver contains undocumented, hardcoded/insecure credentials for the xd user account. A remote unauthenticated attacker can log in via FTP using these credentials. Because the xd user has write permissions to their home...

9.8CVSS0.00849EPSS
Exploits1References1
NVD
NVD
added 2026/03/03 8:16 p.m.16 views

CVE-2024-55021

Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 was discovered to contain a hardcoded password in the FTP protocol...

7.5CVSS0.00337EPSS
Exploits0References2
OSV
OSV
added 2026/03/03 8:16 p.m.5 views

CVE-2024-55021

Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 was discovered to contain a hardcoded password in the FTP protocol...

7.5CVSS5.8AI score0.00337EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/03 12:0 a.m.1 views

CVE-2024-55021

Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 was discovered to contain a hardcoded password in the FTP protocol...

5.9AI score0.00337EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/03 12:0 a.m.4 views

EUVD-2024-55460

Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 was discovered to contain a hardcoded password in the FTP protocol...

5.9AI score0.00337EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/03 12:0 a.m.3 views

CVE-2024-55021

Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 was discovered to contain a hardcoded password in the FTP protocol...

5.9AI score0.00337EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/03 12:0 a.m.25 views

CVE-2024-55021

Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 was discovered to contain a hardcoded password in the FTP protocol...

0.00337EPSS
Exploits0References2
CVE
CVE
added 2026/03/03 12:0 a.m.13 views

CVE-2024-55021

The CVE-2024-55021 entry concerns Weintek cMT-3072XH2 easyweb v2.1.53 running OS v20231011, which reportedly contains a hardcoded password in the FTP protocol. The Red Hat/NVD references confirm an affected product and indicate an impact on confidentiality (C: High) with no integrity or availabil...

7.5CVSS5.9AI score0.00337EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder