Product
monstaftp monsta ftp
7 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-34299
CVE-2022-31827
CVE-2022-27469
CVE-2022-27468
CVE-2020-14057
CVE-2020-14056
CVE-2020-14055
<= 2.11
Monsta FTP versions 2.11 and earlier contain a vulnerability that allows unauthenticated arbitrary file uploads. This flaw enables
all versions
MonstaFTP v2.10.3 was discovered to contain a Server-Side Request Forgery (SSRF) via the function performFetchRequest at HTTPFetch
all versions
Monstaftp v2.10.3 was discovered to allow attackers to execute Server-Side Request Forgery (SSRF).
all versions
Monstaftp v2.10.3 was discovered to contain an arbitrary file upload which allows attackers to execute arbitrary code via a crafte
<= 2.10.1
Monsta FTP 2.10.1 or below allows external control of paths used in filesystem operations. This allows attackers to read and write
<= 2.10.1
Monsta FTP 2.10.1 or below is prone to a server-side request forgery vulnerability due to insufficient restriction of the web fetc
<= 2.10.1
Monsta FTP 2.10.1 or below is prone to a stored cross-site scripting vulnerability in the language setting due to insufficient out