Lucene search
K

247 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-50272

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00413EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-44652

Malicious code in bioql PyPI...

8.3CVSS7.1AI score0.00895EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-47092

Malicious code in bioql PyPI...

9.1CVSS8.4AI score0.00896EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-17224

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.0045EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-44654

Malicious code in bioql PyPI...

8.3CVSS6.5AI score0.00409EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-48622

Malicious code in bioql PyPI...

8.1CVSS6.5AI score0.00365EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 9:53 a.m.15 views

CVE-2024-7745

In WSFTP Server versions before 8.8.8 2022.0.8, a Missing Critical Step in Multi-Factor Authentication of the Web Transfer Module allows users to skip the second-factor verification and log in with username and password only...

8.1CVSS7AI score0.00365EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:50 a.m.10 views

CVE-2024-7744

In WSFTP Server versions before 8.8.8 2022.0.8, an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in the Web Transfer Module allows File Discovery, Probe System Files, User-Controlled Filename, Path Traversal. An authenticated file download flaw has bee...

6.5CVSS6.7AI score0.00688EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:29 a.m.7 views

CVE-2024-9999

In WSFTP Server versions before 8.8.9 2022.0.9, an Incorrect Implementation of Authentication Algorithm in the Web Transfer Module allows users to skip the second-factor verification and log in with username and password only...

6.5CVSS7.1AI score0.00413EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:55 a.m.9 views

CVE-2023-42659

In WSFTP Server versions prior to 8.7.6 and 8.8.4, an unrestricted file upload flaw has been identified. An authenticated Ad Hoc Transfer user has the ability to craft an API call which allows them to upload a file to a specified location on the underlying operating system hosting the WSFTP Serve...

9.1CVSS6.6AI score0.00896EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:13 p.m.9 views

CVE-2022-36967

In Progress WSFTP Server prior to version 8.7.3, multiple reflected cross-site scripting XSS vulnerabilities exist in the administrative web interface. It is possible for a remote attacker to inject arbitrary JavaScript into a WSFTP administrator's web session. This would allow the attacker to...

6.1CVSS6.2AI score0.00628EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:13 p.m.6 views

CVE-2022-36968

In Progress WSFTP Server prior to version 8.7.3, forms within the administrative interface did not include a nonce to mitigate the risk of cross-site request forgery CSRF attacks...

4.3CVSS7AI score0.00224EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:49 p.m.8 views

CVE-2022-27665

Reflected XSS via AngularJS sandbox escape expressions exists in Progress Ipswitch WSFTP Server 8.6.0. This can lead to execution of malicious code and commands on the client due to improper handling of user-provided input. By inputting malicious payloads in the subdirectory searchbar or Add fold...

6.1CVSS6.9AI score0.33112EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/21 6:8 p.m.9 views

CVE-1999-0362

WSFTP server remote denial of service through cwd command...

5CVSS7AI score0.02052EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 5:16 a.m.9 views

CVE-2024-1474

In WSFTP Server versions before 8.8.5, reflected cross-site scripting issues have been identified on various user supplied inputs on the WSFTP Server administrative interface...

7.5CVSS6.5AI score0.0045EPSS
Exploits0References1
NVD
NVD
added 2024/11/12 5:15 p.m.23 views

CVE-2024-9999

In WSFTP Server versions before 8.8.9 2022.0.9, an Incorrect Implementation of Authentication Algorithm in the Web Transfer Module allows users to skip the second-factor verification and log in with username and password only...

6.5CVSS0.00413EPSS
Exploits1References2
CVE
CVE
added 2024/11/12 4:33 p.m.62 views

CVE-2024-9999

CVE-2024-9999 affects Progress WS_FTP Server prior to version 8.8.9 (2022.0.9). The root cause is an incorrect implementation of the authentication algorithm in the Web Transfer Module, allowing bypass of the second-factor verification and login with username and password only. Impact described i...

6.5CVSS6.6AI score0.00413EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/11/12 4:33 p.m.107 views

CVE-2024-9999 Multi-Factor Authentication Bypass in Progress WS_FTP Server

In WSFTP Server versions before 8.8.9 2022.0.9, an Incorrect Implementation of Authentication Algorithm in the Web Transfer Module allows users to skip the second-factor verification and log in with username and password only...

6.5CVSS0.00413EPSS
Exploits1References2
NVD
NVD
added 2024/08/28 5:15 p.m.37 views

CVE-2024-7744

In WSFTP Server versions before 8.8.8 2022.0.8, an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in the Web Transfer Module allows File Discovery, Probe System Files, User-Controlled Filename, Path Traversal. An authenticated file download flaw has...

6.5CVSS0.00688EPSS
Exploits0References2
NVD
NVD
added 2024/08/28 5:15 p.m.17 views

CVE-2024-7745

In WSFTP Server versions before 8.8.8 2022.0.8, a Missing Critical Step in Multi-Factor Authentication of the Web Transfer Module allows users to skip the second-factor verification and log in with username and password only...

8.1CVSS0.00365EPSS
Exploits0References2
Rows per page
Query Builder