CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Cerberusftp: >> Ftp Server >> 10.0.17 Security Vulnerabilities

CVE-2019-25046

The Web Client in Cerberus FTP Server Enterprise before 10.0.19 and 11.x before 11.0.4 allows XSS via an SVG document.

CVSS Score

6.1

EPSS Score

0.004

Published

2021-06-10

CVE-2020-5196

Cerberus FTP Server Enterprise Edition prior to versions 11.0.3 and 10.0.18 allows an authenticated attacker to create files, display hidden files, list directories, and list files without the permission to zip and download (or unzip and upload) files. There are multiple ways to bypass certain permissions by utilizing the zip and unzip features. As a result, users without permission can see files, folders, and hidden files, and can create directories without permission.

CVSS Score

8.1

EPSS Score

0.002

Published

2020-01-14

Page 1

Vulnerabilities

Vulnerable Software

Cerberusftp: >> Ftp Server >> 10.0.17 Security Vulnerabilities

Products

Pricing

Contact Us