Filtered by vendor Winftp Server
Subscriptions
Total
4 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2020-37079 | 1 Winftp Server | 1 Winftp Server | 2026-02-09 | 4.3 Medium |
| Wing FTP Server versions prior to 6.2.7 contain a cross-site request forgery (CSRF) vulnerability in the web administration interface that allows attackers to delete admin users. Attackers can craft a malicious HTML page with a hidden form to submit a request that deletes the administrative user account without proper authorization. | ||||
| CVE-2006-6673 | 1 Winftp Server | 1 Winftp Server | 2025-04-09 | N/A |
| WinFtp Server 2.0.2 allows remote attackers to cause a denial of service (crash) via long (1) PASV, (2) LIST, (3) USER, (4) PORT, and possibly other commands. | ||||
| CVE-2004-2400 | 1 Winftp Server | 1 Winftp Server | 2025-04-03 | N/A |
| WinFTP Server 1.6 stores username and password credentials in plaintext in the data\user.wfd file, which allows local users to gain access to the credentials. | ||||
| CVE-2005-2634 | 1 Winftp Server | 1 Winftp Server | 2025-04-03 | N/A |
| Buffer overflow in the Log-SCR function in the "Log to Screen" feature in WinFtp Server 1.6.8 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long request. | ||||
Page 1 of 1.