Medium severity6.1NVD Advisory· Published Aug 30, 2017· Updated Jun 17, 2026
CVE-2017-14036
CVE-2017-14036
Description
CrushFTP before 7.8.0 and 8.x before 8.2.0 has XSS.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:crushftp:crushftp:*:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:crushftp:crushftp:*:*:*:*:*:*:*:*range: <=7.7.0
- cpe:2.3:a:crushftp:crushftp:8.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:crushftp:crushftp:8.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:crushftp:crushftp:8.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:crushftp:crushftp:8.1.0:*:*:*:*:*:*:*
- (no CPE)range: <7.8.0, <8.2.0
Patches
Vulnerability mechanics
References
2- crushftp.com/version7.htmlnvdVendor Advisory
- crushftp.com/version8.htmlnvdVendor Advisory
News mentions
0No linked articles in our index yet.