Provide Ftp Server Security Vulnerabilities and Issues — Provide Ftp Server CVE List

Lucene search

ProvideserverProvide Ftp Server

2 matches found

CVE•added 2020/04/12 3:15 a.m.•92 views

CVE-2020-11705

An issue was discovered in ProVide (formerly zFTPServer) through 13.1. /ajax/ImportCertificate allows an attacker to load an arbitrary certificate in .pfx format or overwrite arbitrary files via the fileName parameter.

9.8CVSS9.3AI score0.00328EPSS

Web

CVE•added 2020/04/12 3:15 a.m.•87 views

CVE-2020-11708

An issue was discovered in ProVide (formerly zFTPServer) through 13.1. Privilege escalation can occur via the /ajax/SetUserInfo messages parameter because of the EXECUTE() feature, which is for executing programs when certain events are triggered.

9.8CVSS9.5AI score0.0042EPSS

Web