There is an open redirect vulnerability in Titan FTP server 19.0 and below. Users are redirected to any target URL.
6.1CVSS
6.2AI Score
0.001EPSS
An issue was discovered in TitanFTP through 1.94.1205. The move-file function has a path traversal vulnerability in the newPath parameter. An authenticated attacker can upload any file and then move it anywhere on the server's filesystem.
8.8CVSS
8.6AI Score
0.007EPSS
Default file permissions on South River Technologies' Titan MFT and Titan SFTP servers on Linux allows a user that's authentication to the OS to read sensitive files on the filesystem
4.9CVSS
6.2AI Score
0.001EPSS