Lucene search
K

27 matches found

GithubExploit
GithubExploit
added 2026/06/03 1:18 p.m.109 views

Exploit for Improper Access Control in Proftpd

OpenVAS-Vulnerability-Analysis-Incident-Response-Report Real-W...

10CVSS6.2AI score0.96803EPSS
Exploits21
Packet Storm
Packet Storm
added 2021/05/26 12:0 a.m.2238 views

ProFTPd 1.3.5 Remote Command Execution

Exploit Title: ProFTPd 1.3.5 - 'modcopy' Remote Command Execution 2 Date: 25/05/2021 Exploit Author: Shellbr3ak Version: 1.3.5 Tested on: Ubuntu 16.04.6 LTS CVE : CVE-2015-3306 !/usr/bin/env python3 import sys import socket import requests def exploitclient, target: client.connecttarget,21...

10CVSS0.2AI score0.96803EPSS
Exploits21
Exploit DB
Exploit DB
added 2021/05/26 12:0 a.m.2031 views

ProFTPd 1.3.5 - 'mod_copy' Remote Command Execution (2)

Exploit Title: ProFTPd 1.3.5 - 'modcopy' Remote Command Execution 2 Date: 25/05/2021 Exploit Author: Shellbr3ak Version: 1.3.5 Tested on: Ubuntu 16.04.6 LTS CVE : CVE-2015-3306 !/usr/bin/env python3 import sys import socket import requests def exploitclient, target: client.connecttarget,21...

10CVSS9.6AI score0.96803EPSS
Exploits21
0day.today
0day.today
added 2021/05/26 12:0 a.m.2581 views

ProFTPd 1.3.5 - (mod_copy) Remote Command Execution Exploit (2)

Exploit Title: ProFTPd 1.3.5 - 'modcopy' Remote Command Execution 2 Exploit Author: Shellbr3ak Version: 1.3.5 Tested on: Ubuntu 16.04.6 LTS CVE : CVE-2015-3306 !/usr/bin/env python3 import sys import socket import requests def exploitclient, target: client.connecttarget,21 Connecting to the targe...

10CVSS9.2AI score0.96803EPSS
Exploits21
Hacker One
Hacker One
added 2020/11/02 11:13 a.m.169 views

Mail.ru: [files.ucs.ru] ProFTPd mod_copy Arbitrary Read/Write

CVE-2015-3306 in opened to external network FTP server on files.ucs.ru...

10CVSS8.9AI score0.96803EPSS
Exploits21
NVD
NVD
added 2019/07/19 11:15 p.m.37 views

CVE-2019-12815

An arbitrary file copy vulnerability in modcopy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306...

9.8CVSS9.7AI score0.57606EPSS
Exploits1References15
UbuntuCve
UbuntuCve
added 2019/07/19 11:15 p.m.55 views

CVE-2019-12815

An arbitrary file copy vulnerability in modcopy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306...

9.8CVSS7.2AI score0.57606EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2019/07/19 10:56 p.m.67 views

CVE-2019-12815

An arbitrary file copy vulnerability in modcopy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306...

9.8CVSS6.7AI score0.57606EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2015/06/12 12:0 a.m.55 views

openSUSE Security Update : proftpd (openSUSE-2015-410)

The ftp server ProFTPD was updated to 1.3.5a to fix one security issue. The following vulnerability was fixed : - CVE-2015-3306: Unauthenticated copying of files via SITE CPFR/CPTO allowed by modcopy boo927290 In addition, proftpd was updated to 1.3.5a to fix a number of upstream bugs and improve...

10CVSS7.7AI score0.96803EPSS
Exploits23References3
Packet Storm
Packet Storm
added 2015/06/10 12:0 a.m.1081 views

ProFTPD 1.3.5 Mod_Copy Command Execution

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'ProFTPD 1.3.5 ModCopy Command Execution', 'Description' = %q This module exploits the SITE CPFR/CPTO commands in ProFTPD version...

10CVSS8.7AI score0.96803EPSS
Exploits21
0day.today
0day.today
added 2015/06/10 12:0 a.m.4316 views

ProFTPD 1.3.5 Mod_Copy Command Execution Exploit

This Metasploit module exploits the SITE CPFR/CPTO commands in ProFTPD version 1.3.5. Any unauthenticated client can leverage these commands to copy files from any part of the filesystem to a chosen destination. The copy commands are executed with the rights of the ProFTPD service, which by defau...

10CVSS1.1AI score0.96803EPSS
Exploits21
Saint
Saint
added 2015/05/29 12:0 a.m.2497 views

ProFTPD mod_copy command execution

Added: 05/29/2015 CVE: CVE-2015-3306 BID: 74238 OSVDB: 120834 Background ProFTPD is free FTP Server software for Unix and Linux platforms. Problem The modcopy extension, if enabled in ProFTPD, allows unauthenticated attackers to read and write arbitrary files using the SITE CPFR and SITE CPTO...

10CVSS9.1AI score0.96803EPSS
Exploits21
Saint
Saint
added 2015/05/29 12:0 a.m.1007 views

ProFTPD mod_copy command execution

Added: 05/29/2015 CVE: CVE-2015-3306 BID: 74238 OSVDB: 120834 Background ProFTPD is free FTP Server software for Unix and Linux platforms. Problem The modcopy extension, if enabled in ProFTPD, allows unauthenticated attackers to read and write arbitrary files using the SITE CPFR and SITE CPTO...

10CVSS9.1AI score0.96803EPSS
Exploits21
Saint
Saint
added 2015/05/29 12:0 a.m.4654 views

ProFTPD mod_copy command execution

Added: 05/29/2015 CVE: CVE-2015-3306 BID: 74238 OSVDB: 120834 Background ProFTPD is free FTP Server software for Unix and Linux platforms. Problem The modcopy extension, if enabled in ProFTPD, allows unauthenticated attackers to read and write arbitrary files using the SITE CPFR and SITE CPTO...

10CVSS9.1AI score0.96803EPSS
Exploits21
Tenable Nessus
Tenable Nessus
added 2015/05/20 12:0 a.m.63 views

Debian DSA-3263-1 : proftpd-dfsg - security update

Vadim Melihow discovered that in proftpd-dfsg, an FTP server, the modcopy module allowed unauthenticated users to copy files around on the server, and possibly to execute arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin we...

10CVSS8.3AI score0.96803EPSS
Exploits21References5
Debian
Debian
added 2015/05/19 9:46 p.m.86 views

[SECURITY] [DSA 3263-1] proftpd-dfsg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3263-1 [email protected] http://www.debian.org/security/ Sebastien Delafond May 19, 2015 http://www.debian.org/security/faq -...

10CVSS2.8AI score0.96803EPSS
Exploits21
Debian
Debian
added 2015/05/19 9:46 p.m.71 views

[SECURITY] [DSA 3263-1] proftpd-dfsg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3263-1 [email protected] http://www.debian.org/security/ Sebastien Delafond May 19, 2015 http://www.debian.org/security/faq -...

10CVSS9.8AI score0.96803EPSS
Exploits21
OSV
OSV
added 2015/05/18 3:59 p.m.18 views

CVE-2015-3306

The modcopy module in ProFTPD 1.3.5 allows remote attackers to read and write to arbitrary files via the site cpfr and site cpto commands...

9.3AI score
Exploits0References14
NVD
NVD
added 2015/05/18 3:59 p.m.37 views

CVE-2015-3306

The modcopy module in ProFTPD 1.3.5 allows remote attackers to read and write to arbitrary files via the site cpfr and site cpto commands...

10CVSS9.4AI score0.96803EPSS
Exploits21References14
CVE
CVE
added 2015/05/18 3:0 p.m.3388 views

CVE-2015-3306

CVE-2015-3306 affects ProFTPD before patches for 1.3.5, via the mod_copy module. Unauthenticated attackers can use SITE CPFR/CPTO to copy files anywhere on the server and can read/write arbitrary files, enabling remote code execution and information disclosure. Public exploits and proofs (e.g., e...

10CVSS9.2AI score0.96803EPSS
Exploits21References14Affected Software1
Rows per page
Query Builder