Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site request forgery (CSRF) vulnerabilities in Wing FTP Server before 4.4.7 allow remote attackers to hijack the authentication of administrators for requests that (1) execute arbitrary code via a crafted request to admin_lua_script.html or (2) add a domain administrator via a crafted request to admin_addadmin.html.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Wing FTP Server 跨站请求伪造漏洞
Vulnerability Description
Wing FTP Server是一款专业的跨平台FTP服务器端。 Wing FTP Server 4.4.7之前版本中存在跨站请求伪造漏洞。远程攻击者可通过向admin_lua_script.html文件发送特制的请求利用该漏洞执行任意代码;通过向admin_addadmin.html文件发送特制的请求利用该漏洞添加域管理员。
CVSS Information
N/A
Vulnerability Type
N/A