Lucene search
K

89 matches found

Metasploit
Metasploit
added 4 days ago19 views

FTP Fetch, Bind TCP Stager (RC4 Stage Encryption, Metasm)

Fetch and execute an x86 payload from an FTP server. Listen for a connection Module Options msf use payload/cmd/windows/ftp/x86/patchupdllinject/bindtcprc4 msf payloadbindtcprc4 show actions ...actions... msf payloadbindtcprc4 set ACTION msf payloadbindtcprc4 show options ...show and set options...

6.2AI score
Exploits0
Metasploit
Metasploit
added 4 days ago21 views

FTP Fetch, Bind IPv6 TCP Stager (Windows x86)

Fetch and execute an x86 payload from an FTP server. Listen for an IPv6 connection Windows x86 Module Options msf use payload/cmd/windows/ftp/x86/patchupdllinject/bindipv6tcp msf payloadbindipv6tcp show actions ...actions... msf payloadbindipv6tcp set ACTION msf payloadbindipv6tcp show options...

6.2AI score
Exploits0
Metasploit
Metasploit
added 4 days ago18 views

FTP Fetch, Windows Command Shell, Find Tag Ordinal Stager

Fetch and execute an x86 payload from an FTP server. Spawn a piped command shell staged. Use an established connection Module Options msf use payload/cmd/windows/ftp/x86/shell/findtag msf payloadfindtag show actions ...actions... msf payloadfindtag set ACTION msf payloadfindtag show options ...sh...

6.2AI score
Exploits0
Metasploit
Metasploit
added 4 days ago7 views

FTP Fetch

Fetch and execute a MIPS64 payload from an FTP server. Module Options msf use payload/cmd/linux/ftp/mips64/meterpreterreversehttps msf payloadmeterpreterreversehttps show actions ...actions... msf payloadmeterpreterreversehttps set ACTION msf payloadmeterpreterreversehttps show options ...show an...

6.2AI score
Exploits0
Metasploit
Metasploit
added 4 days ago10 views

FTP Fetch, Linux Execute Command

Fetch and execute an x64 payload from an FTP server. Execute an arbitrary command or just a /bin/sh shell Module Options msf use payload/cmd/linux/ftp/x64/exec msf payloadexec show actions ...actions... msf payloadexec set ACTION msf payloadexec show options ...show and set options... msf...

6.2AI score
Exploits0
Metasploit
Metasploit
added 4 days ago15 views

FTP Fetch, Linux Command Shell, Bind TCP Inline

Fetch and execute an MIPSLE payload from an FTP server. Listen for a connection and spawn a command shell Module Options msf use payload/cmd/linux/ftp/mipsle/shellbindtcp msf payloadshellbindtcp show actions ...actions... msf payloadshellbindtcp set ACTION msf payloadshellbindtcp show options...

6.2AI score
Exploits0
Metasploit
Metasploit
added 4 days ago14 views

FTP Fetch, Linux Chmod

Fetch and execute an RISC-V 64-bit payload from an FTP server. Runs chmod on the specified file with specified mode. Module Options msf use payload/cmd/linux/ftp/riscv64le/chmod msf payloadchmod show actions ...actions... msf payloadchmod set ACTION msf payloadchmod show options ...show and set...

6.2AI score
Exploits0
EUVD
EUVD
added 2026/07/06 3:25 p.m.6 views

EUVD-2026-41884

An authentication bypass vulnerability exists in the default SFTP server component utilized across the Ciena products listed. This vulnerability allows a remote, unauthenticated attacker to bypass security controls and gain unauthorized access to the underlying filesystem. Successful exploitation...

9.1CVSS6AI score0.0042EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/11 5:3 a.m.10 views

EUVD-2026-36202

A malicious or compromised FTP/SFTP/SMB server can write arbitrary files anywhere on the client filesystem outside the configured local-directory with attacker-controlled content. Affected versions: Spring Integration 7.0.0 through 7.0.4; 6.5.0 through 6.5.8; 6.4.0 through 6.4.11; 6.3.0 through...

7.1CVSS5.6AI score0.0021EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/06/10 2:27 a.m.10 views

SUSE CVE-2026-44186

Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability in the modproxyftp module in Apache HTTP Server with an attacker controlled backend FTP server. This issue affects undefined: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue...

6.5CVSS5.4AI score0.00562EPSS
Exploits0References6
Fedora
Fedora
added 2026/05/08 7:58 p.m.22 views

[SECURITY] Fedora 43 Update: proftpd-1.3.9a-1.fc43

ProFTPD is an enhanced FTP server with a focus toward simplicity, security, and ease of configuration. It features a very Apache-like configuration syntax, and a highly customizable server infrastructure, including support for multiple 'virtual' FTP servers, anonymous FTP, and permission-based...

8.1CVSS6AI score0.04438EPSS
Exploits7
Vulnrichment
Vulnrichment
added 2026/04/05 8:45 p.m.1 views

CVE-2019-25681 Xlight FTP Server 3.9.1 SEH Overwrite Buffer Overflow

Xlight FTP Server 3.9.1 contains a structured exception handler SEH overwrite vulnerability that allows local attackers to crash the application and overwrite SEH pointers by supplying a crafted buffer string. Attackers can inject a 428-byte payload through the program execution field in virtual...

8.6CVSS6.4AI score0.00208EPSS
Exploits1References4
EUVD
EUVD
added 2026/03/30 12:32 p.m.6 views

EUVD-2018-21710

FTPShell Server 6.83 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the account name field. Attackers can trigger a denial of service by pasting a 417-byte payload into the 'Account name to ban' parameter...

6.9CVSS6.1AI score0.00221EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/03/30 12:0 a.m.4 views

PT-2026-29012

FTPShell Server 6.83 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the account name field. Attackers can trigger a denial of service by pasting a 417-byte payload into the 'Account name to ban' parameter...

6.9CVSS6.1AI score0.00221EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/03/23 12:40 p.m.32 views

CVE-2026-1958 Hard-coded passwords in KlinikaXP

Use of hard-coded credentials in Klinika XP and KlinikaXP Insertino allowed an unauthorized attacker access to several internal services. Critically, this included access to the FTP server that hosted the application's update packages. The attacker with these credentials could upload a malicious...

8.7CVSS0.00272EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/22 1:38 p.m.22 views

CVE-2019-25619 FTP Shell Server 6.83 Buffer Overflow via Account Name

FTP Shell Server 6.83 contains a buffer overflow vulnerability in the 'Account name to ban' field that allows local attackers to execute arbitrary code by supplying a crafted string. Attackers can inject shellcode through the account name parameter in the Manage FTP Accounts dialog to overwrite t...

8.6CVSS0.00214EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/03/22 1:38 p.m.3 views

CVE-2019-25619

FTP Shell Server 6.83 contains a buffer overflow vulnerability in the 'Account name to ban' field that allows local attackers to execute arbitrary code by supplying a crafted string. Attackers can inject shellcode through the account name parameter in the Manage FTP Accounts dialog to overwrite t...

8.6CVSS6.4AI score0.00214EPSS
Exploits1References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/16 1:32 a.m.1 views

CVE-2026-4205

A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. The impacted element is the function...

6.5CVSS5.5AI score0.035EPSS
Exploits1References8Affected Software20
RedhatCVE
RedhatCVE
added 2026/03/11 1:19 p.m.7 views

CVE-2025-41710

An unauthenticated remote attacker may use hardcodes credentials to get access to the previously activated FTP Server with limited read and write privileges...

6.5CVSS5.8AI score0.00387EPSS
Exploits0References1
CVE
CVE
added 2026/03/10 8:26 a.m.8 views

CVE-2025-41710

CVE-2025-41710 describes an unauthenticated remote access issue where an attacker may use hard-coded credentials to reach a previously activated FTP server with limited read/write privileges. The CVSSv3.1 base score is 6.5 (Medium) with network attack vector, low attack complexity, and no user in...

6.5CVSS5.8AI score0.00387EPSS
Exploits0References4
Rows per page
Query Builder