45 matches found
EUVD-2021-21866
Malware in sbrugna...
EUVD-2008-3717
Malware in sbrugna...
CVE-2020-15575
SolarWinds Serv-U File Server before 15.2.1 allows XSS as demonstrated by Tenable Scan, aka Case Number 00484194...
CVE-2020-15574
SolarWinds Serv-U File Server before 15.2.1 mishandles the Same-Site cookie attribute, aka Case Number 00331893...
CVE-2021-35223
The Serv-U File Server allows for events such as user login failures to be audited by executing a command. This command can be supplied with parameters that can take the form of user string variables, allowing remote code execution...
PT-2024-22252 · Solarwinds · Serv-U Ftp Server
Name of the Vulnerable Software and Affected Versions: Serv-U FTP server affected versions not specified Description: A highly privileged account can overwrite arbitrary files on the system with log output due to improper sanitization of log file path tags. Recommendations: At the moment, there i...
SolarWinds Serv-U File Server has an unspecified vulnerability
Solarwinds SolarWinds Serv-U File Server is a file transfer server from SolarWinds Solarwinds, Inc. A security vulnerability exists in SolarWinds Serv-U File Server, which can be exploited by attackers to remotely execute code...
CVE-2021-35223
The Serv-U File Server allows for events such as user login failures to be audited by executing a command. This command can be supplied with parameters that can take the form of user string variables, allowing remote code execution...
CVE-2021-35223
The Serv-U File Server allows for events such as user login failures to be audited by executing a command. This command can be supplied with parameters that can take the form of user string variables, allowing remote code execution...
Remote code execution
The Serv-U File Server allows for events such as user login failures to be audited by executing a command. This command can be supplied with parameters that can take the form of user string variables, allowing remote code execution...
CVE-2021-35223
The CVE-2021-35223 vulnerability affects SolarWinds Serv-U File Server, specifically the Execute Command function that allows examining events (e.g., login failures) and passing parameters as user string variables, enabling remote code execution. The issue is tied to a remote, network-exposed vec...
SolarWinds Serv-U File Server 跨站脚本漏洞
Solarwinds SolarWinds Serv-U File Server is a file transfer server from SolarWinds USA. A cross-site scripting vulnerability exists in SolarWinds Serv-U File Server versions prior to 15.2, which originates from exposure to cross-site scripting XSS via the HTTP host header...
SolarWinds Serv-U File Server Cross-Site Scripting Vulnerability (CNVD-2021-14808)
Solarwinds SolarWinds Serv-U File Server is a file transfer server from SolarWinds USA. A cross-site scripting vulnerability exists in SolarWinds Serv-U File Server before 15.2.2, which stems from a WEB application lacking proper authentication of client data. An authenticated attacker could...
SolarWinds Serv-U File Server Security Vulnerability
Solarwinds SolarWinds Serv-U File Server is a file transfer server from SolarWinds USA. A security vulnerability exists in SolarWinds Serv-U File Server before 15.2.2 that allows unauthenticated macro injection...
SolarWinds Serv-U File Server Information Disclosure Vulnerability
SolarWinds Serv-U File Server is a file transfer server from SolarWinds USA. A security vulnerability exists in SolarWinds Serv-U File Server versions prior to 15.2.1. An attacker can exploit this vulnerability with an HTTP response to cause information disclosure...
CVE-2020-15573
SolarWinds Serv-U File Server before 15.2.1 has a "Cross-script vulnerability," aka Case Numbers 00041778 and 00306421...
CVE-2020-15574
SolarWinds Serv-U File Server before 15.2.1 mishandles the Same-Site cookie attribute, aka Case Number 00331893...
CVE-2020-15575
SolarWinds Serv-U File Server before 15.2.1 allows XSS as demonstrated by Tenable Scan, aka Case Number 00484194...
CVE-2020-15576
SolarWinds Serv-U File Server before 15.2.1 allows information disclosure via an HTTP response...
Design/Logic Flaw
SolarWinds Serv-U File Server before 15.2.1 mishandles the Same-Site cookie attribute, aka Case Number 00331893...