Lucene search
K

155 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-17736

Malware in sbrugna...

8.8CVSS8.8AI score0.00514EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-17706

Malware in sbrugna...

6.1CVSS6.3AI score0.0123EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 7:32 p.m.10 views

CVE-2021-27730

Accellion FTA 912432 and earlier is affected by argument injection via a crafted POST request to an admin endpoint. The fixed version is FTA912444 and later...

9.8CVSS7.2AI score0.01414EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:57 p.m.9 views

CVE-2021-27101

Accellion FTA 912370 and earlier is affected by SQL injection via a crafted Host header in a request to documentroot.html. The fixed version is FTA912380 and later...

9.8CVSS7.9AI score0.05998EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:20 p.m.9 views

CVE-2020-14294

An issue was discovered in Secudos Qiata FTA 1.70.19. The comment feature allows persistent XSS that is executed when reading transfer comments or the global notice board...

6.1CVSS6AI score0.01235EPSS
Exploits2
Citrix
Citrix
added 2024/02/09 12:0 a.m.7 views

Published apps are not displaying content of local file when opened via FTA launcher of CWAforLinux

When opening local files using File Type Association FTA launcher of CWA Linux, the corresponding application launches fine, but with blank document instead of showing the content of the local file...

7AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/06/13 2:30 p.m.5 views

fta-antincendio.it Cross Site Scripting vulnerability OBB-3424494

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
CISA KEV Catalog
CISA KEV Catalog
added 2021/11/03 12:0 a.m.18 views

Accellion FTA Server-Side Request Forgery (SSRF) Vulnerability

Accellion FTA contains a server-side request forgery SSRF vulnerability exploited via a crafted POST request to wmProgressstat.html...

9.8CVSS8.8AI score0.11315EPSS
In wildExploits0
CISA KEV Catalog
CISA KEV Catalog
added 2021/11/03 12:0 a.m.25 views

Accellion FTA OS Command Injection Vulnerability

Accellion FTA contains an OS command injection vulnerability exploited via a local web service call...

7.8CVSS8.8AI score0.03624EPSS
In wildExploits0
CISA KEV Catalog
CISA KEV Catalog
added 2021/11/03 12:0 a.m.18 views

Accellion FTA SQL Injection Vulnerability

Accellion FTA contains a SQL injection vulnerability exploited via a crafted host header in a request to documentroot.html...

9.8CVSS9.5AI score0.05998EPSS
In wildExploits0
CISA KEV Catalog
CISA KEV Catalog
added 2021/11/03 12:0 a.m.14 views

Accellion FTA OS Command Injection Vulnerability

Accellion FTA contains an OS command injection vulnerability exploited via a crafted POST request to various admin endpoints...

10CVSS9.2AI score0.56411EPSS
In wildExploits0
VulnCheck KEV
VulnCheck KEV
added 2021/04/13 12:0 a.m.7 views

VulnCheck KEV: CVE-2021-27103

Accellion FTA contains a server-side request forgery SSRF vulnerability exploited via a crafted POST request to wmProgressstat.html...

9.8CVSS7.5AI score0.11315EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2021/04/13 12:0 a.m.3 views

VulnCheck KEV: CVE-2021-27104

Accellion FTA contains an OS command injection vulnerability exploited via a crafted POST request to various admin endpoints...

10CVSS7.5AI score0.56411EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2021/04/06 12:0 a.m.7 views

The vulnerability of the Accellion FTA security system, which stems from the lack of measures to protect the SQL query structure, allows attackers to execute arbitrary SQL code and gain unauthorized access to protected information.

The vulnerability of the Accellion FTA security system lies in the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary SQL code and gain unauthorized access to protected information using a specially...

9.8CVSS8.6AI score0.05998EPSS
Exploits0References6Affected Software1
Qualys Blog
Qualys Blog
added 2021/04/02 3:0 p.m.107 views

Qualys Update on Accellion FTA Security Incident

Update April 2, 2021 to the March 3 original blog post: As part of our commitment to keeping customers and the community informed about how we are addressing and resolving the Accellion FTA cyber incident, we are providing the following update to confirm containment of the incident and share...

0.4AI score
Exploits0
ThreatPost
ThreatPost
added 2021/03/23 2:16 p.m.90 views

Energy Giant Shell Is Latest Victim of Accellion Attacks

Energy giant Royal Dutch Shell is the latest victim of a series of attacks on users of the Accellion legacy File Transfer Appliance FTA product, which already has affected numerous companies and been attributed to the FIN11 and the Clop ransomware gang. “Shell has been impacted by a data-security...

10CVSS1.4AI score0.56411EPSS
Exploits0References13
Check Point Advisories
Check Point Advisories
added 2021/03/14 12:0 a.m.19 views

Accellion FTA SQL injection (CVE-2021-27101)

An SQL injection vulnerability exists in Accellion FTA. Successful exploitation of this vulnerability could result in the execution of arbitrary SQL statements on the affected system...

7.5CVSS4AI score0.05998EPSS
Exploits0
NVD
NVD
added 2021/03/02 2:15 a.m.15 views

CVE-2021-27730

Accellion FTA 912432 and earlier is affected by argument injection via a crafted POST request to an admin endpoint. The fixed version is FTA912444 and later...

9.8CVSS0.01414EPSS
Exploits0References1
Prion
Prion
added 2021/03/02 2:15 a.m.23 views

Design/Logic Flaw

Accellion FTA 912432 and earlier is affected by argument injection via a crafted POST request to an admin endpoint. The fixed version is FTA912444 and later...

7.5CVSS9.3AI score0.01414EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2021/03/02 1:15 a.m.19 views

CVE-2021-27731

Accellion FTA 912432 and earlier is affected by stored XSS via a crafted POST request to a user endpoint. The fixed version is FTA912444 and later...

6.1CVSS0.00721EPSS
Exploits0References1
Rows per page
Query Builder