Cross-site scripting (XSS) vulnerability in index.php in FTP Admin 0.1.0 allows remote attackers to inject arbitrary web script or HTML via the error parameter in an error page action.
CVSS
4.3
UNKNOWN
Published
Dec 4, 2007
Loading
Vendor coverage
Track published CVEs, severity trends, and remediation context for ftp products.
Search results
Showing 1-4 of 4 vulnerabilities.
Cross-site scripting (XSS) vulnerability in index.php in FTP Admin 0.1.0 allows remote attackers to inject arbitrary web script or HTML via the error parameter in an error page action.
CVSS
4.3
UNKNOWN
Published
Dec 4, 2007
FTP PASV "Pizza Thief" denial of service and unauthorized data access. Attackers can steal data by connecting to a port that was intended for use by a client.
CVSS
6.4
UNKNOWN
Published
Feb 1, 1999
A quote cwd command on FTP servers can reveal the full path of the home directory of the "ftp" user.
CVSS
6.4
UNKNOWN
Published
Jan 1, 1997
CWD ~root command in ftpd allows root access.
CVSS
10.0
UNKNOWN
Published
Nov 11, 1988