14 matches found
EUVD-2003-1593
Malware in sbrugna...
EUVD-2020-29483
Malware in sbrugna...
EUVD-2021-28652
Malicious code in bioql PyPI...
CVE-2021-41639
MELAG FTP Server 2.2.0.4 stores unencrpyted passwords of FTP users in a local configuration file...
CVE-2020-8635
Wing FTP Server v6.2.3 for Linux, macOS, and Solaris sets insecure permissions on installation directories and configuration files. This allows local users to arbitrarily create FTP users with full privileges, and escalate privileges within the operating system by modifying system files...
Design/Logic Flaw
Wing FTP Server v6.2.3 for Linux, macOS, and Solaris sets insecure permissions on installation directories and configuration files. This allows local users to arbitrarily create FTP users with full privileges, and escalate privileges within the operating system by modifying system files...
CVE-2020-8635
Wing FTP Server v6.2.3 for Linux, macOS, and Solaris sets insecure permissions on installation directories and configuration files. This allows local users to arbitrarily create FTP users with full privileges, and escalate privileges within the operating system by modifying system files...
CVE-2020-8635
CVE-2020-8635 affects Wing FTP Server v6.2.3 on Linux, macOS and Solaris. The root cause is insecure permissions on installation directories and configuration files, enabling local attackers to arbitrarily create FTP users with full privileges and escalate privileges by modifying system files. An...
CVE-2012-5683
Multiple cross-site request forgery CSRF vulnerabilities in ZPanel 10.0.1 and earlier allow remote attackers to hijack the authentication of administrators for requests that 1 create new FTP users via a CreateFTP action in the ftpmanagement module to the default URI, 2 conduct cross-site scriptin...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in ZPanel 10.0.1 and earlier allow remote attackers to hijack the authentication of administrators for requests that 1 create new FTP users via a CreateFTP action in the ftpmanagement module to the default URI, 2 conduct cross-site scriptin...
DRZES Hms 3.2 - Multiple SQL Injections
source: https://www.securityfocus.com/bid/15644/info DRZES HMS is prone to multiple SQL injection vulnerabilities. These issues are due to a lack of proper sanitization of user-supplied input before it is used in SQL queries. Successful exploitation could result in a compromise of the application...
CesarFTP 0.99 g - Remote CWD Denial of Service
source: https://www.securityfocus.com/bid/7950/info A vulnerability has been reported for CesarFTP. Reportedly, an attacker may crash a target server by supplying excessive data as the argument to the 'CWD' command. This may result in the server hanging, effectively denying service to other...
FreeBSD-SA-01:64.wu-ftpd
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:64 Security Advisory FreeBSD, Inc. Topic: wu-ftpd port contains remote root compromise Category: ports Module: wu-ftpd Announced: 2001-12-04 Credits: CORE Security...
CVE-2001-0768
GuildFTPd 0.9.7 stores user names and passwords in plaintext in the default.usr file, which allows local users to gain privileges as other FTP users by reading the file...