MEDIUM🇵🇱 Wersja polska

CVE-2014-1843

CVSS 5.0v2.0pub. 2014-04-29upd. 2026-05-06

Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remote attackers to obtain the property information of an arbitrary home folder via a Properties action with a .. (dot dot) in the src parameter.

CVSS Vector
AV:N/AC:L/Au:N/C:P/I:N/A:N
  • Southrivertech Titan Ftp Server

    APP
    Southrivertech
    10.01.174010.0.173310.30≤ 10.40
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Path Traversal
CWE
References

Related vulnerabilities

CVE-2023-22629HIGH8.8ten sam produkt

An issue was discovered in TitanFTP through 1.94.1205. The move-file function has a path traversal vulnerabili...

CVE-2023-45690MEDIUM4.9ten sam produkt

Default file permissions on South River Technologies' Titan MFT and Titan SFTP servers on Linux allows a user ...

CVE-2022-44215MEDIUM6.1ten sam produkt

There is an open redirect vulnerability in Titan FTP server 19.0 and below. Users are redirected to any target...

CVE-2019-10009MEDIUM6.5ten sam produkt

A Directory Traversal issue was discovered in the Web GUI in Titan FTP Server 2019 Build 3505. When an authent...

CVE-2014-1842MEDIUM5.0ten sam produkt

Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remo...