Crushftp Vulnerabilities

SSRF Vulnerability in CrushFTP Versions 9.x to 11.x

CVE-2025-32102

CrushftpCrushftp👾📰5MEDIUM

Directory Traversal Vulnerability in CrushFTP Products

CVE-2025-32103

CrushftpCrushftp5MEDIUM

Authentication Bypass Vulnerability in CrushFTP by CrushFTP

CVE-2025-31161

CrushftpCrushftp🥇📈💰👾🟡EPSS 81%🦅📰9.8CRITICAL

Unauthenticated Payload Execution through Improper Input Handling in Web Application Logs

CVE-2024-11986

Crushftp, LlcCrushftp9.6CRITICAL

Remote File Read Vulnerability in VFS Sandbox

CVE-2024-4040

CrushftpCrushftp📈💰👾🟡EPSS 94%🦅📰9.8CRITICAL

CrushFTP Prior to 10.5.1 Vulnerable to Improperly Controlled Modification of Dynamically-Determined Object Attributes

CVE-2023-43177

CrushftpCrushftp👾🟡EPSS 70%9.8CRITICAL

Stored Cross-Site Scripting in CrushFTP by Crush FTP, Inc.

CVE-2021-44076

CrushftpCrushftp4.8MEDIUM

Credentials Theft Vulnerability in CrushFTP by CrushFTP, Inc.

CVE-2018-18288

CrushftpCrushftp6.1MEDIUM

Serialization Vulnerability in CrushFTP by Crush FTP, Inc.

CVE-2017-14035

CrushftpCrushftp9.8CRITICAL

Cross-Site Scripting Vulnerability in CrushFTP by CrushFTP, Inc.

CVE-2017-14036

CrushftpCrushftp6.1MEDIUM

HTTP Header Vulnerability in CrushFTP Versions by CrushFTP

CVE-2017-14037

CrushftpCrushftp6.1MEDIUM

Redirect Vulnerability in CrushFTP by CrushFTP, Inc.

CVE-2017-14038

CrushftpCrushftp6.1MEDIUM

Crushftp Vulnerabilities

Vulnerability Published:

Sort By:

15 April 2025

SSRF Vulnerability in CrushFTP Versions 9.x to 11.x

Directory Traversal Vulnerability in CrushFTP Products

3 April 2025

Authentication Bypass Vulnerability in CrushFTP by CrushFTP

13 December 2024

Unauthenticated Payload Execution through Improper Input Handling in Web Application Logs

22 April 2024

Remote File Read Vulnerability in VFS Sandbox

18 November 2023

CrushFTP Prior to 10.5.1 Vulnerable to Improperly Controlled Modification of Dynamically-Determined Object Attributes

15 September 2022

Stored Cross-Site Scripting in CrushFTP by Crush FTP, Inc.

26 December 2019

Credentials Theft Vulnerability in CrushFTP by CrushFTP, Inc.

30 August 2017

Serialization Vulnerability in CrushFTP by Crush FTP, Inc.

Cross-Site Scripting Vulnerability in CrushFTP by CrushFTP, Inc.

HTTP Header Vulnerability in CrushFTP Versions by CrushFTP

Redirect Vulnerability in CrushFTP by CrushFTP, Inc.