VYPR
Vendor

Proftpd

Products
1
CVEs
55
Across products
55
Status
Private

Products

1

Recent CVEs

55
View all 55 CVEs →
  • CVE-2004-0346HigNov 23, 2004
    risk 0.51cvss 7.8epss 0.06

    Off-by-one buffer overflow in _xlate_ascii_write() in ProFTPD 1.2.7 through 1.2.9rc2p allows local users to gain privileges via a 1024 byte RETR command.

  • CVE-2021-47865HigJan 21, 2026
    risk 0.49cvss 7.5epss 0.01

    ProFTPD 1.3.7a contains a denial of service vulnerability that allows attackers to overwhelm the server by creating multiple simultaneous FTP connections. Attackers can repeatedly establish connections using threading to exhaust server connection limits and block legitimate user…

  • CVE-2024-57392HigFeb 6, 2025
    risk 0.49cvss 7.5epss 0.01

    Buffer Overflow vulnerability in Proftpd commit 4017eff8 allows a remote attacker to execute arbitrary code and can cause a Denial of Service (DoS) on the FTP service by sending a maliciously crafted message to the ProFTPD service port.

  • CVE-2016-3125HigApr 5, 2016
    risk 0.49cvss 7.5epss 0.07

    The mod_tls module in ProFTPD before 1.3.5b and 1.3.6 before 1.3.6rc2 does not properly handle the TLSDHParamFile directive, which might cause a weaker than intended Diffie-Hellman (DH) key to be used and consequently allow attackers to have unspecified impact via unknown…

  • CVE-2026-44331HigMay 5, 2026
    risk 0.46cvss 8.1epss 0.00

    In ProFTPD through 1.3.9a before 7666224, a SQL injection vulnerability in sqltab_fetch_clients_cb() in contrib/mod_wrap2_sql.c allows a remote attacker to inject arbitrary SQL commands via a crafted domain name that is accessed in a reverse DNS lookup. When "UseReverseDNS on"…

  • CVE-2026-42167HigApr 28, 2026
    risk 0.46cvss 8.1epss 0.05

    mod_sql in ProFTPD before 1.3.9a allows remote attackers to execute arbitrary code via a username, in scenarios where there is logging of USER requests with an expansion such as %U, and the SQL backend allows commands (e.g., COPY TO PROGRAM).

  • CVE-2024-48651HigNov 29, 2024
    risk 0.45cvss 7.5epss 0.02

    In ProFTPD through 1.3.8b before cec01cc, supplemental group inheritance grants unintended access to GID 0 because of the lack of supplemental groups from mod_sql.

  • CVE-2023-48795MedDec 18, 2023
    risk 0.39cvss 5.9epss 0.93

    The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently…

  • CVE-2017-7418MedApr 4, 2017
    risk 0.36cvss 5.5epss 0.00

    ProFTPD before 1.3.5e and 1.3.6 before 1.3.6rc5 controls whether the home directory of a user could contain a symbolic link through the AllowChrootSymlinks configuration option, but checks only the last path component when enforcing AllowChrootSymlinks. Attackers with local…

  • CVE-2015-3306May 18, 2015
    risk 0.11cvss epss 0.97

    The mod_copy module in ProFTPD 1.3.5 allows remote attackers to read and write to arbitrary files via the site cpfr and site cpto commands.

  • CVE-2010-20103Aug 20, 2025
    risk 0.10cvss epss 0.05

    A malicious backdoor was embedded in the official ProFTPD 1.3.3c source tarball distributed between November 28 and December 2, 2010. The backdoor implements a hidden FTP command trigger that, when invoked, causes the server to execute arbitrary shell commands with root…

  • CVE-2010-4221Nov 9, 2010
    risk 0.10cvss epss 0.91

    Multiple stack-based buffer overflows in the pr_netio_telnet_gets function in netio.c in ProFTPD before 1.3.3c allow remote attackers to execute arbitrary code via vectors involving a TELNET IAC escape character to a (1) FTP or (2) FTPS server.

  • CVE-2009-0542Feb 12, 2009
    risk 0.09cvss epss 0.75

    SQL injection vulnerability in ProFTPD Server 1.3.1 through 1.3.2rc2 allows remote attackers to execute arbitrary SQL commands via a "%" (percent) character in the username, which introduces a "'" (single quote) character during variable substitution by mod_sql.

  • CVE-2006-5815Nov 8, 2006
    risk 0.09cvss epss 0.74

    Stack-based buffer overflow in the sreplace function in ProFTPD 1.3.0 and earlier allows remote attackers, probably authenticated, to cause a denial of service and execute arbitrary code, as demonstrated by vd_proftpd.pm, a "ProFTPD remote exploit."

  • CVE-2000-0574Jul 7, 2000
    risk 0.08cvss epss 0.59

    FTP servers such as OpenBSD ftpd, NetBSD ftpd, ProFTPd and Opieftpd do not properly cleanse untrusted format strings that are used in the setproctitle function (sometimes called by set_proc_title), which allows remote attackers to cause a denial of service or execute arbitrary…

  • CVE-2003-0831Nov 17, 2003
    risk 0.07cvss epss 0.55

    ProFTPD 1.2.7 through 1.2.9rc2 does not properly translate newline characters when transferring files in ASCII mode, which allows remote attackers to execute arbitrary code via a buffer overflow using certain files.

  • CVE-2001-0136Mar 12, 2001
    risk 0.07cvss epss 0.45

    Memory leak in ProFTPd 1.2.0rc2 allows remote attackers to cause a denial of service via a series of USER commands, and possibly SIZE commands if the server has been improperly installed.

  • CVE-2023-51713Dec 22, 2023
    risk 0.06cvss epss 0.04

    make_ftp_cmd in main.c in ProFTPD before 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash semantics.

  • CVE-2001-1501Dec 31, 2001
    risk 0.06cvss epss 0.38

    The glob functionality in ProFTPD 1.2.1, and possibly other versions allows remote attackers to cause a denial of service (CPU and memory consumption) via commands with large numbers of wildcard and other special characters, as demonstrated using an ls command with multiple (1)…

  • CVE-1999-0911Aug 27, 1999
    risk 0.06cvss epss 0.38

    Buffer overflow in ProFTPD, wu-ftpd, and beroftpd allows remote attackers to gain root access via a series of MKD and CWD commands that create nested directories.