Ws Ftp Server@8.8 Security Vulnerabilities and Issues — Ws Ftp Server@8.8 CVE List

Lucene search

ProgressWs Ftp Server8.8

3 matches found

CVE•added 2023/09/27 3:18 p.m.•426 views

CVE-2023-40044

In WS_FTP Server versions prior to 8.7.4 and 8.8.2, a pre-authenticated attacker could leverage a .NET deserialization vulnerability in the Ad Hoc Transfer module to execute remote commands on the underlying WS_FTP Server operating system.

10CVSS9.3AI score0.94427EPSS

In wildWeb

CVE•added 2023/09/27 3:18 p.m.•32 views

CVE-2023-40045

In WS_FTP Server versions prior to 8.7.4 and 8.8.2, a reflected cross-site scripting (XSS) vulnerability exists in WS_FTP Server's Ad Hoc Transfer module. An attacker could leverage this vulnerability to target WS_FTP Server users with a specialized payload which results in the execution of malicio...

8.3CVSS6.4AI score0.00037EPSS

CVE•added 2023/09/27 3:18 p.m.•32 views

CVE-2023-40046

In WS_FTP Server versions prior to 8.7.4 and 8.8.2, a SQL injection vulnerability exists in the WS_FTP Server manager interface. An attacker may be able to infer information about the structure and contents of the database and execute SQL statements that alter or delete database elements.

8.2CVSS7.6AI score0.00178EPSS