CVE-2007-3769
CVE-2007-3769 affects SurgeFTP 2.3a1: a reflected XSS in the mirrored server management interface allows user-assisted, remote FTP servers to inject arbitrary web script or HTML via a malformed response, which is shown in the error message. The note indicates this could be leveraged for root acce...