cbcvebase.
CVE-2024-1474
published 2024-02-21

CVE-2024-1474: In WS_FTP Server versions before 8.8.5, reflected cross-site scripting issues have been identified on various user supplied inputs on the WS_FTP Server…

PriorityP425medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EPSS
0.45%
35.9th percentile
In WS_FTP Server versions before 8.8.5, reflected cross-site scripting issues have been identified on various user supplied inputs on the WS_FTP Server administrative interface.

Affected

2 ranges
VendorProductVersion rangeFixed in
progressws_ftp_server< 8.8.58.8.5
progress_software_coprorationws_ftp_server>= 8.8.0 < 8.8.58.8.5
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.