Monstaftp: >> Monsta Ftp >> 2.10.3 Security Vulnerabilities
Monsta FTP versions 2.11 and earlier contain a vulnerability that allows unauthenticated arbitrary file uploads. This flaw enables attackers to execute arbitrary code by uploading a specially crafted file from a malicious (S)FTP server.
CVSS Score
9.8
EPSS Score
0.557
Published
2025-11-07
Monstaftp v2.10.3 was discovered to contain an arbitrary file upload which allows attackers to execute arbitrary code via a crafted file uploaded to the web server.
CVSS Score
9.8
EPSS Score
0.01
Published
2022-04-26
Monstaftp v2.10.3 was discovered to allow attackers to execute Server-Side Request Forgery (SSRF).
CVSS Score
9.8
EPSS Score
0.004
Published
2022-04-26