PT-2022-6127 · Apache +3 · Apache Commons Net +3
Name of the Vulnerable Software and Affected Versions: Apache Commons Net versions prior to 3.9.0 Description: The issue is related to the FTP client in Apache Commons Net, which trusts the host from PASV response by default. This allows a malicious server to redirect the Commons Net code to use ...