mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
857 B
857 B
CVE-2023-22629
Description
An issue was discovered in TitanFTP through 1.94.1205. The move-file function has a path traversal vulnerability in the newPath parameter. An authenticated attacker can upload any file and then move it anywhere on the server's filesystem.
POC
Reference
- http://packetstormsecurity.com/files/171737/Titan-FTP-Path-Traversal.html
- https://f20.be/cves/titan-ftp-vulnerabilities
- https://www.southrivertech.com/software/nextgen/titanftp/en/relnotes.pdf
Github
No PoCs found on GitHub currently.