CVE Tools

cerberusftp

Communicationscommercial

7

Cumulative CVEs

4

Monthly snapshots

#54

Peak rank

Top products

Latest CVEs

The 10 most recently published vulnerabilities affecting cerberusftp.

CVE-2026-6265Local Privilege Escalation in Cerberus FTP Server =< 2025.4.28.8Apr 27, 2026
CVE-2019-25046The Web Client in Cerberus FTP Server Enterprise before 10.0.19 and 11.x before 11.0.4 allows XSS via an SVG document.6.1Jun 10, 2021
CVE-2020-5194The zip API endpoint in Cerberus FTP Server 8 allows an authenticated attacker without zip permission to use the zip functionality via an unrestricted API endpoint. Improper permission verification...5.4Jan 14, 2020
CVE-2020-5196Cerberus FTP Server Enterprise Edition prior to versions 11.0.3 and 10.0.18 allows an authenticated attacker to create files, display hidden files, list directories, and list files without the perm...8.1Jan 14, 2020
CVE-2020-5195Reflected XSS through an IMG element in Cerberus FTP Server prior to versions 11.0.1 and 10.0.17 allows a remote attacker to execute arbitrary JavaScript or HTML via a crafted public folder URL. Th...6.1Jan 13, 2020
CVE-2017-6367In Cerberus FTP Server 8.0.10.1, a crafted HTTP request causes the Windows service to crash. The attack methodology involves a long Host header and an invalid Content-Length header.7.5Mar 14, 2017
CVE-2012-6339Multiple cross-site scripting (XSS) vulnerabilities in the administrative web interface in Cerberus FTP Server before 5.0.6.0 allow (1) remote attackers to inject arbitrary web script or HTML via a...4.3Dec 31, 2012
CVE-2012-5301The default configuration of Cerberus FTP Server before 5.0.4.0 supports the DES cipher for SSH sessions, which makes it easier for remote attackers to obtain sensitive information by sniffing the ...5.0Oct 4, 2012
CVE-2012-2999Multiple cross-site request forgery (CSRF) vulnerabilities in the web interface in Cerberus FTP Server before 5.0.5.0 allow remote attackers to hijack the authentication of administrators for reque...6.8Oct 4, 2012
CVE-2004-2769Cerberus FTP Server before 4.0.3.0 allows remote authenticated users to list hidden files, even when the "Display hidden files" option is enabled, via the (1) MLSD or (2) MLST commands.4.0Jul 2, 2010