6 results (0.003 seconds)

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1

There is an open redirect vulnerability in Titan FTP server 19.0 and below. Users are redirected to any target URL. Hay una vulnerabilidad de redirección abierta en las versiones 19.0 e inferiores del servidor Titan FTP. Los usuarios son redirigidos a cualquier URL de destino. • https://github.com/JBalanza/CVE-2022-44215 https://drive.google.com/file/d/1oLJaqs5RRNQLT1Hyy-tgEzzhGLB0506J/view?usp=sharing • CWE-601: URL Redirection to Untrusted Site ('Open Redirect') •

CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 2

Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remote attackers to copy an arbitrary user's home folder via a Move action with a .. (dot dot) in the src parameter. Vulnerabilidad de salto de directorio en la interfaz web en Titan FTP Server anterior a 10.40 build 1829 permite a atacantes remotos copiar una carpeta home de usuario arbitraria a través de una acción Move con un .. (punto punto) en el parámetro src. Titan FTP server version 10.32 Build 1816 suffers from multiple directory traversal vulnerabilities. • https://www.exploit-db.com/exploits/31579 http://archives.neohapsis.com/archives/fulldisclosure/2014-02/0092.html http://www.exploit-db.com/exploits/31579 http://www.osvdb.org/103195 http://www.securityfocus.com/bid/65462 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •

CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 2

Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remote attackers to list all usernames via a Go action with a .. (dot dot) in the search-bar value. Vulnerabilidad de salto de directorio en la interfaz web en Titan FTP Server anterior a 10.40 build 1829 permite a atacantes remotos listar todos los nombres de usuarios a través de una acción Go con un .. (punto punto) en el valor de barra de búsqueda. Titan FTP server version 10.32 Build 1816 suffers from multiple directory traversal vulnerabilities. • https://www.exploit-db.com/exploits/31579 http://archives.neohapsis.com/archives/fulldisclosure/2014-02/0092.html http://www.exploit-db.com/exploits/31579 http://www.osvdb.org/103196 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •

CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 2

Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remote attackers to obtain the property information of an arbitrary home folder via a Properties action with a .. (dot dot) in the src parameter. Vulnerabilidad de salto de directorio en la interfaz web en Titan FTP Server anterior a 10.40 build 1829 permite a atacantes remotos obtener la información de propiedad de una carpeta home arbitraria a través de una acción Properties con un .. (punto punto) en el parámetro src. Titan FTP server version 10.32 Build 1816 suffers from multiple directory traversal vulnerabilities. • https://www.exploit-db.com/exploits/31579 http://archives.neohapsis.com/archives/fulldisclosure/2014-02/0092.html http://www.exploit-db.com/exploits/31579 http://www.osvdb.org/103197 http://www.securityfocus.com/bid/65469 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •

CVSS: 4.0EPSS: 6%CPEs: 126EXPL: 1

Directory traversal vulnerability in TitanFTPd in South River Technologies Titan FTP Server 8.10.1125, and probably earlier versions, allows remote authenticated users to read arbitrary files, determine file size, via "..//" sequences in the xcrc command. Vulnerabilidad de salto de directorio en TitanFTPd en South River Technologies Titan FTP Server v8.10.1125, y probablemente versiones anteriores, permite a usuarios autentificados remotamente leer ficheros de su elección, tamaño de fichero determinado, a través de la secuencia "..//" en el comando xcrc. • http://osvdb.org/65533 http://secunia.com/advisories/40237 http://www.securityfocus.com/archive/1/511839/100/0/threaded http://www.securityfocus.com/bid/40949 https://exchange.xforce.ibmcloud.com/vulnerabilities/59492 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •