6 matches found
EUVD-2004-2310
Malware in sbrugna...
SurgeFTP Multiple XSS Vulnerabilities (Nov 2015) - Active Check
SurgeFTP Server is prone to multiple stored cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
NetWin SurgeFTP - (Authenticated) Admin Command Injection (Metasploit)
NetWin SurgeFTP - Authenticated Admin Command Injection Metasploit require 'msf/core' class Metasploit3 'SurgeFTP Remote Command Execution', 'Description' = %q This module exploits a flaw in the SurgeFTP server's web-based administrative console to execute arbitary commands. , 'Author' = 'Spencer...
CVE-2004-2318
The administrative interface surgeftpmgr.cgi for SurgeFTP Server 1.0b through 2.2k1 allows remote attackers to cause a temporary denial of service crash via requests with two percent % signs in the CMD parameter...
CVE-2004-2318
The CVE-2004-2318 vulnerability affects SurgeFTP Server versions 1.0b to 2.2k1 and is triggered through the administrative interface, surgeftpmgr.cgi. A crafted request containing two percent (%) signs in the CMD parameter can cause a crash, resulting in a temporary denial of service. The availab...
CVE-2004-2318
The administrative interface surgeftpmgr.cgi for SurgeFTP Server 1.0b through 2.2k1 allows remote attackers to cause a temporary denial of service crash via requests with two percent % signs in the CMD parameter...