Product
solarwinds serv u ftp server
12 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2020-22428
CVE-2020-15543
CVE-2020-15542
CVE-2020-15541
CVE-2019-19829
CVE-2019-13182
CVE-2019-13181
CVE-2019-12181
CVE-2018-19999
CVE-2018-19934
CVE-2018-15906
CVE-1999-0838
all versions
SolarWinds Serv-U before 15.1.6 Hotfix 3 is affected by Cross Site Scripting (XSS) via a directory name (entered by an admin) cont
< 15.2.1
SolarWinds Serv-U FTP server before 15.2.1 does not validate an argument path.
< 15.2.1
SolarWinds Serv-U FTP server before 15.2.1 mishandles the CHMOD command.
< 15.2.1
SolarWinds Serv-U FTP server before 15.2.1 allows remote command execution.
all versions
A cross-site scripting (XSS) vulnerability exists in SolarWinds Serv-U FTP Server 15.1.7 in the email parameter, a different vulne
all versions
A stored cross-site scripting (XSS) vulnerability exists in the web UI of SolarWinds Serv-U FTP Server 15.1.7.
all versions
A CSV injection vulnerability exists in the web UI of SolarWinds Serv-U FTP Server v15.1.7.
< 15.1.7
A privilege escalation vulnerability exists in SolarWinds Serv-U before 15.1.7 for Linux.
all versions
The local management interface in SolarWinds Serv-U FTP Server 15.1.6.25 has incorrect access controls that permit local users to
all versions
SolarWinds Serv-U FTP Server 15.1.6.25 has reflected cross-site scripting (XSS) in the Web management interface via URL path and H
all versions
SolarWinds Serv-U FTP Server 15.1.6 allows remote authenticated users to execute arbitrary code by leveraging the Import feature a
all versions
Buffer overflow in Serv-U FTP 2.5 allows remote users to conduct a denial of service via the SITE command.