Unrated severityNVD Advisory· Published Jun 3, 2019· Updated Aug 4, 2024
CVE-2019-10009
CVE-2019-10009
Description
A Directory Traversal issue was discovered in the Web GUI in Titan FTP Server 2019 Build 3505. When an authenticated user attempts to preview an uploaded file (through PreviewHandler.ashx) by using a \..\..\ technique, arbitrary files can be loaded in the server response outside the root directory.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Titan/FTP Serverdescription
- Range: = 2019 Build 3505
Patches
Vulnerability mechanics
References
6- www.exploit-db.com/exploits/46611mitreexploitx_refsource_EXPLOIT-DB
- www.exploit-db.com/exploits/46611/mitreexploitx_refsource_EXPLOIT-DB
- packetstormsecurity.com/files/152244/Titan-FTP-Server-2019-Build-3505-Directory-Traversal.htmlmitrex_refsource_MISC
- seclists.org/fulldisclosure/2019/Mar/47mitremailing-listx_refsource_FULLDISC
- www.southrivertech.com/software/regsoft/titanftp/v19/verhist_en.htmlmitrex_refsource_CONFIRM
- seclists.org/fulldisclosure/2019/Mar/47mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.