Vulnerabilities (CVE)

Filtered by vendor Datawizard Subscribe
Filtered by product Ftpxq
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2006-5569 1 Datawizard 1 Ftpxq 2024-11-21 6.4 MEDIUM N/A
FtpXQ Server 3.0.1 installs with two default testing accounts, which allows remote attackers to read or write arbitrary files via unknown vectors. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
CVE-2006-5568 1 Datawizard 1 Ftpxq 2024-11-21 5.0 MEDIUM N/A
FtpXQ Server 3.0.1 allows remote attackers to cause a denial of service (CPU exhaustion) via a long MKD command.
CVE-2002-1920 1 Datawizard 1 Ftpxq 2024-11-20 5.0 MEDIUM N/A
Buffer overflow in FtpXQ 2.5 allows remote attackers to cause a denial of service (crash) via a MKD command with a long directory name.
CVE-2001-1213 1 Datawizard 1 Ftpxq 2024-11-20 6.4 MEDIUM N/A
The default configuration of DataWizard FtpXQ 2.0 and 2.1 includes a default username and password, which allows remote attackers to read and write arbitrary files in the root folder.
CVE-2001-0293 1 Datawizard 1 Ftpxq 2024-11-20 5.0 MEDIUM N/A
Directory traversal vulnerability in FtpXQ FTP server 2.0.93 allows remote attackers to read arbitrary files via a .. (dot dot) in the GET command.