Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
FileZilla Client 3.63.1 DLL Hijacking via Missing TextShaping.dll
Vulnerability Description
FileZilla Client 3.63.1 contains a DLL hijacking vulnerability that allows attackers to execute malicious code by placing a crafted TextShaping.dll in the application directory. Attackers can generate a reverse shell payload using msfvenom and replace the missing DLL to achieve remote code execution when the application launches.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
对搜索路径元素未加控制
Vulnerability Title
FileZilla 代码问题漏洞
Vulnerability Description
FileZilla是一款基于Windows平台的开源FTP/SFTP客户端。 FileZilla Client 3.63.1版本存在代码问题漏洞,该漏洞源于DLL劫持漏洞,可能导致远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A