Lucene search
+L

124 matches found

metasploit
metasploit
added last week27 views

FTP Fetch, Bind IPv6 TCP Stager (Windows x86)

Fetch and execute an x86 payload from an FTP server. Listen for an IPv6 connection Windows x86 Module Options This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule include...

6.2AI score
Exploits0
metasploit
metasploit
added last week26 views

FTP Fetch, Bind TCP Stager (RC4 Stage Encryption, Metasm)

Fetch and execute an x86 payload from an FTP server. Listen for a connection Module Options...

6.2AI score
Exploits0
metasploit
metasploit
added last week21 views

FTP Fetch, Windows Command Shell, Find Tag Ordinal Stager

Fetch and execute an x86 payload from an FTP server. Spawn a piped command shell staged. Use an established connection Module Options This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule include...

6.2AI score
Exploits0
metasploit
metasploit
added last week14 views

FTP Fetch, Linux Execute Command

Fetch and execute an x64 payload from an FTP server. Execute an arbitrary command or just a /bin/sh shell Module Options This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule include...

6.2AI score
Exploits0
metasploit
metasploit
added last week19 views

FTP Fetch, Linux Command Shell, Bind TCP Inline

Fetch and execute an MIPSLE payload from an FTP server. Listen for a connection and spawn a command shell Module Options This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule include...

6.2AI score
Exploits0
metasploit
metasploit
added last week11 views

FTP Fetch

Fetch and execute a MIPS64 payload from an FTP server. Module Options msf use payload/cmd/linux/ftp/mips64/meterpreterreversehttps msf payloadmeterpreterreversehttps show actions ...actions... msf payloadmeterpreterreversehttps set ACTION msf payloadmeterpreterreversehttps show options ...show an...

6.2AI score
Exploits0
metasploit
metasploit
added last week15 views

FTP Fetch, Linux Chmod

Fetch and execute an RISC-V 64-bit payload from an FTP server. Runs chmod on the specified file with specified mode. Module Options...

6.2AI score
Exploits0
euvd
euvd
added 2026/07/06 3:25 p.m.6 views

EUVD-2026-41884

An authentication bypass vulnerability exists in the default SFTP server component utilized across the Ciena products listed. This vulnerability allows a remote, unauthenticated attacker to bypass security controls and gain unauthorized access to the underlying filesystem. Successful exploitation...

9.1CVSS6AI score0.0042EPSS
Exploits0References1
euvd
euvd
added 2026/06/11 5:3 a.m.10 views

EUVD-2026-36202

A malicious or compromised FTP/SFTP/SMB server can write arbitrary files anywhere on the client filesystem outside the configured local-directory with attacker-controlled content. Affected versions: Spring Integration 7.0.0 through 7.0.4; 6.5.0 through 6.5.8; 6.4.0 through 6.4.11; 6.3.0 through...

7.1CVSS5.6AI score0.0021EPSS
Exploits0References1
susecve
susecve
added 2026/06/10 2:27 a.m.10 views

SUSE CVE-2026-44186

Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability in the modproxyftp module in Apache HTTP Server with an attacker controlled backend FTP server. This issue affects undefined: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue...

6.5CVSS5.4AI score0.00562EPSS
Exploits0References6
redhatcve
redhatcve
added 2026/06/05 7:11 p.m.10 views

CVE-2026-8175

IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Endpoint are affected by a buffer overflow in the asperahttpd component. This vulnerability could be exploited to caus...

9.8CVSS6.2AI score0.0058EPSS
Exploits0References1
cvelist
cvelist
added 2026/05/27 1:56 p.m.53 views

CVE-2026-7876 Authentication bypass vulnerability found in Aspera High-Speed Transfer Server for Cloud Pak for Integration

IBM Aspera HSTS for CP4I 1.5.1 through 1.5.19 is affected by an authentication bypass vulnerability. A transfer client may be able to take advantage of this vulnerability to access files in the server's local storage that they should not have access to, when specific restriction settings are not ...

0.00312EPSS
Exploits0References1
cve
cve
added 2026/05/27 1:20 p.m.23 views

CVE-2026-8180

CVE-2026-8180 affects IBM Aspera High-Speed Transfer Endpoint (3.7.4–4.4.7 FP1) and Server (3.7.4–4.4.7 FP1). The asperahttpd component is vulnerable to a denial-of-service that allows an unauthenticated user to crash the asperahttpd service. The connected IBM security bulletin enumerates multipl...

7.5CVSS5.8AI score0.00319EPSS
Exploits0References1Affected Software2
ptsecurity
ptsecurity
added 2026/05/27 12:0 a.m.17 views

PT-2026-43991

IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Endpoint are affected by a potential arbitrary file read in the asperahttpd component. An authenticated user may be ab...

6.5CVSS5.9AI score0.00325EPSS
Exploits0References2
cnnvd
cnnvd
added 2026/05/27 12:0 a.m.13 views

IBM Aspera High-Speed Transfer Endpoint和IBM Aspera High-Speed Transfer Server 代码问题漏洞

IBM Aspera High-Speed Transfer Endpoint and IBM Aspera High-Speed Transfer Server are products of American International Business Machines Corporation IBM. The IBM Aspera High-Speed Transfer Endpoint is a high-speed file transfer and data exchange node service. The IBM Aspera High-Speed Transfer...

7.5CVSS5.9AI score0.00319EPSS
Exploits0References2
ibm
ibm
added 2026/05/26 9:30 p.m.23 views

Security Bulletin: Authentication bypass vulnerability found in Aspera High-Speed Transfer Server for Cloud Pak for Integration (CP4I)

Summary IBM Aspera High-Speed Transfer Server for Cloud Pak for Integration CP4I 1.5.20 has addressed an authentication vulnerability that may allow access to files in the local server storage. Vulnerability Details CVEID:CVE-2026-7876 DESCRIPTION: IBM Aspera High-Speed Transfer Server for CP4i i...

9.1CVSS5.8AI score0.00312EPSS
Exploits0Affected Software1
ibm
ibm
added 2026/05/22 7:21 p.m.25 views

Security Bulletin: Multiple vulnerabilities in Aspera applications.

Summary Multiple vulnerabilities were addressed in IBM Aspera High-Speed Transfer Endpoint 4.4.7 Fix Pack 2 and IBM Aspera High-Speed Transfer Server 4.4.7 Fix Pack 2 Vulnerability Details CVEID:CVE-2026-7876 DESCRIPTION: IBM Aspera High-Speed Transfer Server and IBM Aspera High-Speed Transfer...

9.8CVSS6.8AI score0.0058EPSS
Exploits0Affected Software1
fedora
fedora
added 2026/05/08 7:58 p.m.22 views

[SECURITY] Fedora 43 Update: proftpd-1.3.9a-1.fc43

ProFTPD is an enhanced FTP server with a focus toward simplicity, security, and ease of configuration. It features a very Apache-like configuration syntax, and a highly customizable server infrastructure, including support for multiple 'virtual' FTP servers, anonymous FTP, and permission-based...

8.1CVSS6AI score0.04438EPSS
Exploits7
vulnrichment
vulnrichment
added 2026/04/05 8:45 p.m.1 views

CVE-2019-25681 Xlight FTP Server 3.9.1 SEH Overwrite Buffer Overflow

Xlight FTP Server 3.9.1 contains a structured exception handler SEH overwrite vulnerability that allows local attackers to crash the application and overwrite SEH pointers by supplying a crafted buffer string. Attackers can inject a 428-byte payload through the program execution field in virtual...

8.6CVSS6.4AI score0.00208EPSS
Exploits1References4
euvd
euvd
added 2026/03/30 12:32 p.m.7 views

EUVD-2018-21710

FTPShell Server 6.83 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the account name field. Attackers can trigger a denial of service by pasting a 417-byte payload into the 'Account name to ban' parameter...

6.9CVSS6.1AI score0.00221EPSS
Exploits1References5
Rows per page
Query Builder