Titan Ftp Server Security Vulnerabilities and Issues — Titan Ftp Server CVE List

Lucene search

SouthrivertechTitan Ftp Server

10 matches found

CVE•added 2019/06/03 9:29 p.m.•104 views

CVE-2019-10009

A Directory Traversal issue was discovered in the Web GUI in Titan FTP Server 2019 Build 3505. When an authenticated user attempts to preview an uploaded file (through PreviewHandler.ashx) by using a ....\ technique, arbitrary files can be loaded in the server response outside the root directory.

6.5CVSS6.3AI score0.06589EPSS

CVE•added 2023/08/22 7:16 p.m.•64 views

CVE-2022-44215

There is an open redirect vulnerability in Titan FTP server 19.0 and below. Users are redirected to any target URL.

6.1CVSS6.2AI score0.01469EPSS

CVE•added 2023/10/16 5:15 p.m.•51 views

CVE-2023-45690

Default file permissions on South River Technologies' Titan MFT and Titan SFTP servers on Linux allows a user that's authentication to the OS to read sensitive files on the filesystem

4.9CVSS6AI score0.00237EPSS

CVE•added 2014/04/29 10:37 a.m.•47 views

CVE-2014-1843

Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remote attackers to obtain the property information of an arbitrary home folder via a Properties action with a .. (dot dot) in the src parameter.

5CVSS6.5AI score0.10715EPSS

CVE•added 2023/02/14 8:15 p.m.•47 views

CVE-2023-22629

An issue was discovered in TitanFTP through 1.94.1205. The move-file function has a path traversal vulnerability in the newPath parameter. An authenticated attacker can upload any file and then move it anywhere on the server's filesystem.

8.8CVSS8.6AI score0.17473EPSS

CVE•added 2009/02/06 11:30 a.m.•42 views

CVE-2008-6082

Titan FTP Server 6.26 build 630 allows remote attackers to cause a denial of service (CPU consumption) via the SITE WHO command.

5CVSS6.6AI score0.60799EPSS

CVE•added 2014/04/29 10:37 a.m.•39 views

CVE-2014-1841

Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remote attackers to copy an arbitrary user's home folder via a Move action with a .. (dot dot) in the src parameter.

5CVSS6.7AI score0.10234EPSS

CVE•added 2010/06/24 12:17 p.m.•38 views

CVE-2010-2425

Directory traversal vulnerability in TitanFTPd in South River Technologies Titan FTP Server 8.10.1125, and probably earlier versions, allows remote authenticated users to read or delete arbitrary files via "..//" sequences in a COMB command.

6.5CVSS6.5AI score0.0053EPSS

CVE•added 2010/06/24 12:17 p.m.•36 views

CVE-2010-2426

Directory traversal vulnerability in TitanFTPd in South River Technologies Titan FTP Server 8.10.1125, and probably earlier versions, allows remote authenticated users to read arbitrary files, determine file size, via "..//" sequences in the xcrc command.

4CVSS6.4AI score0.36393EPSS

CVE•added 2014/04/29 10:37 a.m.•33 views

CVE-2014-1842

Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remote attackers to list all usernames via a Go action with a .. (dot dot) in the search-bar value.

5CVSS6.6AI score0.16138EPSS