Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Reflected XSS (via AngularJS sandbox escape expressions) exists in Progress Ipswitch WS_FTP Server 8.6.0. This can lead to execution of malicious code and commands on the client due to improper handling of user-provided input. By inputting malicious payloads in the subdirectory searchbar or Add folder filename boxes, it is possible to execute client-side commands. For example, there is Client-Side Template Injection via subFolderPath to the ThinClient/WtmApiService.asmx/GetFileSubTree URI.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Progress ipswitch WS_FTP Server 跨站脚本漏洞
Vulnerability Description
Progress ipswitch WS_FTP Server是一款FTP服务器软件。 Progress ipswitch WS_FTP Server 8.6.0版本存在安全漏洞,该漏洞源于对用户提供的输入的处理不当。攻击者利用该漏洞在客户端执行恶意代码和命令。
CVSS Information
N/A
Vulnerability Type
N/A