Crushftp Exploited Vulnerabilities

Crushftp vulnerabilities known to be exploited. Over the past 365 days, sorted by exploit discovery date.

JSON RSS CSV 🔔 Create Alert Trigger

Cross Site Scripting Vulnerability in CrushFTP by CrushFTP Inc.
CVE-2025-63419
CrushFTP Inc.CrushFTP👾🟡6.1MEDIUM
Stored Cross-Site Scripting in CrushFTP Admin Panel
CVE-2025-63420
CrushFTPCrushFTP👾🟡4.1MEDIUM
AS2 Validation Misconfiguration in CrushFTP Affects Remote Admin Access
CVE-2025-54309
CrushftpCrushftp📈💰👾🟡EPSS 49%🦅📰9CRITICAL
SSRF Vulnerability in CrushFTP Versions 9.x to 11.x
CVE-2025-32102
CrushftpCrushftp👾📰5MEDIUM
Authentication Bypass Vulnerability in CrushFTP by CrushFTP
CVE-2025-31161
CrushftpCrushftp🥇📈💰👾🟡EPSS 86%🦅📰9.8CRITICAL