Monsta Ftp Security Vulnerabilities and Issues — Monsta Ftp CVE List

Lucene search

MonstaftpMonsta Ftp

4 matches found

CVE•added 2022/04/26 2:15 p.m.•75 views

CVE-2022-27469

Monstaftp v2.10.3 was discovered to allow attackers to execute Server-Side Request Forgery (SSRF).

9.8CVSS9.7AI score0.00358EPSS

CVE•added 2022/04/26 2:15 p.m.•69 views

CVE-2022-27468

Monstaftp v2.10.3 was discovered to contain an arbitrary file upload which allows attackers to execute arbitrary code via a crafted file uploaded to the web server.

9.8CVSS9.7AI score0.00952EPSS

CVE•added 2020/07/01 5:15 p.m.•31 views

CVE-2020-14057

Monsta FTP 2.10.1 or below allows external control of paths used in filesystem operations. This allows attackers to read and write arbitrary local files, allowing an attacker to gain remote code execution in common deployments.

9.8CVSS9.7AI score0.03074EPSS

CVE•added 2020/07/01 5:15 p.m.•30 views

CVE-2020-14056

Monsta FTP 2.10.1 or below is prone to a server-side request forgery vulnerability due to insufficient restriction of the web fetch functionality. This allows attackers to read arbitrary local files and interact with arbitrary third-party services.

9.8CVSS9.1AI score0.00492EPSS