VYPR
Unrated severityNVD Advisory· Published Feb 6, 2026· Updated Mar 5, 2026

Wing FTP Server < 6.2.7 - Cross-site Request Forgery

CVE-2020-37079

Description

Wing FTP Server versions prior to 6.2.7 contain a cross-site request forgery (CSRF) vulnerability in the web administration interface that allows attackers to delete admin users. Attackers can craft a malicious HTML page with a hidden form to submit a request that deletes the administrative user account without proper authorization.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.

CVE-2020-37079 · VYPR