3 matches found
NPM: mcp-ssh-tool has file transfer path policy bypass and bearer token comparison hardening
NPM: mcp-ssh-tool has file transfer path policy bypass and bearer token comparison hardening vulnerability discovered by ? in WordPress Npm mcp-ssh-tool versions = 2.1.0...
CVE-2026-40884 goshs: Empty-username SFTP password authentication bypass in goshs
goshs is a SimpleHTTPServer written in Go. Prior to 2.0.0-beta.6, goshs contains an SFTP authentication bypass when the documented empty-username basic-auth syntax is used. If the server is started with -b ':pass' together with -sftp, goshs accepts that configuration but does not install any SFTP...
Cisco Web Security Appliance FTP Authentication Bypass Vulnerability
Designed to help organizations address the growing challenges of protecting and controlling network traffic, the Cisco Web Security Appliance WSA can be easier and faster to deploy, while reducing maintenance requirements, latency, and operational costs. An FTP authentication bypass vulnerability...