VDB-246506 | CrushFTP up to 10.5.4 improper authentication

Posted by Angelo Barbosa | Nov 30, 2023 | CVE

A vulnerability was found in CrushFTP up to 10.5.4 and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to improper authentication.

The attack may be launched remotely. Furthermore, there is an exploit available.

It is recommended to upgrade the affected component.

VDB-246506 | CrushFTP up to 10.5.4 improper authentication

Related Posts

CVE-2022-46025 | Totolink N200RE v5 9.3.5u.6255_B20211224 Wi-Fi Information access control

CVE-2024-36255 | Mattermost up to 8.1.12/9.5.3/9.6.1 Slash Command cross-site request forgery

CVE-2024-34142 | Adobe Experience Manager up to 6.5.20 cross site scripting (apsb24-28)

CVE-2023-51525 | Veribo & Roland Murg WP Simple Booking Calendar Plugin up to 2.0.8.4 on WordPress cross-site request forgery