FTP Server
by Titan
CVEs (10)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2008-5281 | 0.04 | — | 0.06 | Nov 29, 2008 | Heap-based buffer overflow in Titan FTP Server 6.05 build 550 allows remote attackers to execute arbitrary code via a long DELE command. | |||
| CVE-2004-0437 | 0.04 | — | 0.08 | Jul 7, 2004 | Titan FTP Server version 3.01 build 163, and possibly other versions before build 169, allows remote authenticated users to cause a denial of service (crash) by disconnecting from the system during a "LIST -L" command, which causes Titan to access an invalid socket. | |||
| CVE-2014-1842 | 0.03 | — | 0.05 | Apr 29, 2014 | Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remote attackers to list all usernames via a Go action with a .. (dot dot) in the search-bar value. | |||
| CVE-2014-1841 | 0.03 | — | 0.05 | Apr 29, 2014 | Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remote attackers to copy an arbitrary user's home folder via a Move action with a .. (dot dot) in the src parameter. | |||
| CVE-2024-0547 | 0.00 | — | 0.01 | Jan 15, 2024 | A vulnerability has been found in Ability FTP Server 2.34 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component APPE Command Handler. The manipulation leads to denial of service. The attack can be launched remotely. The… | |||
| CVE-2022-44215 | 0.00 | — | 0.01 | Aug 22, 2023 | There is an open redirect vulnerability in Titan FTP server 19.0 and below. Users are redirected to any target URL. | |||
| CVE-2022-46369 | 0.00 | — | 0.00 | Jan 12, 2023 | Rumpus - FTP server version 9.0.7.1 Persistent cross-site scripting (PXSS) – vulnerability may allow inserting scripts into unspecified input fields. | |||
| CVE-2022-46368 | 0.00 | — | 0.00 | Jan 12, 2023 | Rumpus - FTP server version 9.0.7.1 Cross-site request forgery (CSRF) – vulnerability may allow unauthorized action on behalf of authenticated users. | |||
| CVE-2008-0725 | 0.00 | — | 0.03 | Feb 12, 2008 | Multiple heap-based buffer overflows in the (1) FTP service and (2) administration service in Titan FTP Server 6.0.5.549 allow remote attackers to cause a denial of service (daemon hang) and possibly execute arbitrary code via a long command. NOTE: the USER and PASS commands… | |||
| CVE-2003-1349 | 0.00 | — | 0.02 | Dec 31, 2003 | Directory traversal vulnerability in NITE ftp-server (NiteServer) 1.83 allows remote attackers to list arbitrary directories via a "\.." (backslash dot dot) in the CD (CWD) command. |
- CVE-2008-5281Nov 29, 2008risk 0.04cvss —epss 0.06
Heap-based buffer overflow in Titan FTP Server 6.05 build 550 allows remote attackers to execute arbitrary code via a long DELE command.
- CVE-2004-0437Jul 7, 2004risk 0.04cvss —epss 0.08
Titan FTP Server version 3.01 build 163, and possibly other versions before build 169, allows remote authenticated users to cause a denial of service (crash) by disconnecting from the system during a "LIST -L" command, which causes Titan to access an invalid socket.
- CVE-2014-1842Apr 29, 2014risk 0.03cvss —epss 0.05
Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remote attackers to list all usernames via a Go action with a .. (dot dot) in the search-bar value.
- CVE-2014-1841Apr 29, 2014risk 0.03cvss —epss 0.05
Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remote attackers to copy an arbitrary user's home folder via a Move action with a .. (dot dot) in the src parameter.
- CVE-2024-0547Jan 15, 2024risk 0.00cvss —epss 0.01
A vulnerability has been found in Ability FTP Server 2.34 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component APPE Command Handler. The manipulation leads to denial of service. The attack can be launched remotely. The…
- CVE-2022-44215Aug 22, 2023risk 0.00cvss —epss 0.01
There is an open redirect vulnerability in Titan FTP server 19.0 and below. Users are redirected to any target URL.
- CVE-2022-46369Jan 12, 2023risk 0.00cvss —epss 0.00
Rumpus - FTP server version 9.0.7.1 Persistent cross-site scripting (PXSS) – vulnerability may allow inserting scripts into unspecified input fields.
- CVE-2022-46368Jan 12, 2023risk 0.00cvss —epss 0.00
Rumpus - FTP server version 9.0.7.1 Cross-site request forgery (CSRF) – vulnerability may allow unauthorized action on behalf of authenticated users.
- CVE-2008-0725Feb 12, 2008risk 0.00cvss —epss 0.03
Multiple heap-based buffer overflows in the (1) FTP service and (2) administration service in Titan FTP Server 6.0.5.549 allow remote attackers to cause a denial of service (daemon hang) and possibly execute arbitrary code via a long command. NOTE: the USER and PASS commands…
- CVE-2003-1349Dec 31, 2003risk 0.00cvss —epss 0.02
Directory traversal vulnerability in NITE ftp-server (NiteServer) 1.83 allows remote attackers to list arbitrary directories via a "\.." (backslash dot dot) in the CD (CWD) command.