2 results (0.005 seconds)

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 3

A vulnerability classified as problematic was found in EFS Easy File Sharing FTP 2.0. Affected by this vulnerability is an unknown functionality. The manipulation of the argument username leads to denial of service. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. • https://0day.today/exploit/description/39218 https://packetstormsecurity.com/files/176377/Easy-File-Sharing-FTP-Server-2.0-Denial-Of-Service.html https://vuldb.com/?ctiid.251479 https://vuldb.com/?id.251479 https://www.youtube.com/watch?v=Rcl6VWg_bPY • CWE-404: Improper Resource Shutdown or Release •

CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0

Easy File Sharing FTP Server version 3.6 is vulnerable to a directory traversal vulnerability which allows an attacker to list and download any file from any folder outside the FTP root Directory. Easy File Sharing FTP Server versión 3.6 es vulnerable a una vulnerabilidad de salto de directorio, lo que permite a un atacante listar y descargar cualquier archivo de cualquier carpeta fuera del root FTP Directory. • http://www.securityfocus.com/bid/96944 https://www.rapid7.com/db/modules/auxiliary/scanner/ftp/easy_file_sharing_ftp • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •