Crushftp Vulnerabilities
Crushftp Crushftp vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
AS2 Validation Misconfiguration in CrushFTP Affects Remote Admin Access
CVE-2025-54309CrushftpCrushftpππ°πΎπ‘EPSS 72%π¦ π°9CRITICALSSRF Vulnerability in CrushFTP Versions 9.x to 11.x
CVE-2025-32102CrushftpCrushftpπΎπ°5MEDIUMDirectory Traversal Vulnerability in CrushFTP Products
CVE-2025-32103CrushftpCrushftp5MEDIUMAuthentication Bypass Vulnerability in CrushFTP by CrushFTP
CVE-2025-31161CrushftpCrushftpπ₯ππ°πΎπ‘EPSS 87%π¦ π°9.8CRITICALUnauthenticated Payload Execution through Improper Input Handling in Web Application Logs
CVE-2024-11986Crushftp, LlcCrushftp9.6CRITICALCrushFTP passwords reset vulnerability leads to account takeover
CVE-2024-53552CrushFTPCrushftpCross Site Scripting Vulnerability in CrushFTP Products
CVE-2024-22910CrushFTPCrushftp6.1MEDIUMRemote File Read Vulnerability in VFS Sandbox
CVE-2024-4040CrushftpCrushftpππ°πΎπ‘EPSS 94%π¦ π°9.8CRITICALCrushFTP Prior to 10.5.1 Vulnerable to Improperly Controlled Modification of Dynamically-Determined Object Attributes
CVE-2023-43177CrushftpCrushftpπΎπ‘EPSS 76%9.8CRITICALStored Cross-Site Scripting in CrushFTP by Crush FTP, Inc.
CVE-2021-44076CrushftpCrushftp4.8MEDIUMCredentials Theft Vulnerability in CrushFTP by CrushFTP, Inc.
CVE-2018-18288CrushftpCrushftp6.1MEDIUMSerialization Vulnerability in CrushFTP by Crush FTP, Inc.
CVE-2017-14035CrushftpCrushftp9.8CRITICALCross-Site Scripting Vulnerability in CrushFTP by CrushFTP, Inc.
CVE-2017-14036CrushftpCrushftp6.1MEDIUMHTTP Header Vulnerability in CrushFTP Versions by CrushFTP
CVE-2017-14037CrushftpCrushftp6.1MEDIUMRedirect Vulnerability in CrushFTP by CrushFTP, Inc.
CVE-2017-14038CrushftpCrushftp6.1MEDIUM