Datawizard: >> Ftpxq Security Vulnerabilities
FtpXQ Server 3.0.1 allows remote attackers to cause a denial of service (CPU exhaustion) via a long MKD command.
CVSS Score
5.0
EPSS Score
0.052
Published
2006-10-27
FtpXQ Server 3.0.1 installs with two default testing accounts, which allows remote attackers to read or write arbitrary files via unknown vectors. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
CVSS Score
6.4
EPSS Score
0.003
Published
2006-10-27
Buffer overflow in FtpXQ 2.5 allows remote attackers to cause a denial of service (crash) via a MKD command with a long directory name.
CVSS Score
5.0
EPSS Score
0.008
Published
2002-12-31
The default configuration of DataWizard FtpXQ 2.0 and 2.1 includes a default username and password, which allows remote attackers to read and write arbitrary files in the root folder.
CVSS Score
6.4
EPSS Score
0.005
Published
2001-12-18
Directory traversal vulnerability in FtpXQ FTP server 2.0.93 allows remote attackers to read arbitrary files via a .. (dot dot) in the GET command.
CVSS Score
5.0
EPSS Score
0.027
Published
2001-05-03