VYPR

SFT

by Biscom

CVEs (2)

  • CVE-2020-8796CriFeb 7, 2020
    risk 0.64cvss 9.8epss 0.03

    Biscom Secure File Transfer (SFT) before 5.1.1071 and 6.0.1xxx before 6.0.1005 allows Remote Code Execution on the server.

  • CVE-2017-5247MedJul 18, 2017
    risk 0.35cvss 5.4epss 0.01

    Biscom Secure File Transfer is vulnerable to cross-site scripting in the File Name field. An authenticated user with permissions to upload or send files can populate this field with a filename that contains standard HTML scripting tags. The resulting script will evaluated by any…