Ftp AdminCVEs & Vulnerabilities
2 CVEs affecting Ftp Admin products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
2 CVEs→ All vendors
Most Affected Products
ftp admin 2
CVE-2007-6234CRITICALpoc
index.php in FTP Admin 0.1.0 allows remote attackers to bypass authentication and obtain administrative access via a loggedin parameter with a value of true, as demonstrated by adding a user account.
4 Dec 2007
10.0
CVSS
CVE-2007-6233MEDIUMpoc
Directory traversal vulnerability in index.php in FTP Admin 0.1.0 allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the page parameter. NOTE: in some environments, this can be leveraged for remote file inclusion by using a UNC share pathname or an ftp, ftps, or ssh2.sftp URL.
4 Dec 2007
4.9
CVSS
← PrevPage 1 / 1Next →