VYPR
Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Jun 16, 2026

CVE-2002-1939

CVE-2002-1939

Description

FlashFXP 1.4 prints FTP passwords in plaintext when there are transfers in the queue, which allows attackers to obtain FTP passwords of other users by editing the queue properties.

Affected products

2
  • Flashfxp/Flashfxp2 versions
    cpe:2.3:a:flashfxp:flashfxp:1.4:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:flashfxp:flashfxp:1.4:*:*:*:*:*:*:*
    • (no CPE)range: =1.4

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.