An issue was discovered in TitanFTP through 1.94.1205. The move-file function has a path traversal vulnerability in the newPath parameter. An authenticated attacker can upload any file and then move it anywhere on the server's filesystem.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HSouthrivertech Titan Ftp Server
APPSouthrivertech≤ 1.94.1205
Related vulnerabilities
Default file permissions on South River Technologies' Titan MFT and Titan SFTP servers on Linux allows a user ...
There is an open redirect vulnerability in Titan FTP server 19.0 and below. Users are redirected to any target...
A Directory Traversal issue was discovered in the Web GUI in Titan FTP Server 2019 Build 3505. When an authent...
Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remo...
Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remo...