Description
Directory traversal vulnerability in FTPx Corp FTP Explorer 10.5.19.1 for Windows, and probably earlier versions, allows remote FTP servers to write arbitrary files via a "..\" (dot dot backslash) in a filename.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_misc
http://www.htbridge.ch/advisory/directory_traversal_in_ftp_explorer.html
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/40901
Scores
EPSS
0.0152
EPSS Percentile
71.5%
Details
CWE
CWE-22
Status
published
Products (1)
ftpx/ftp_explorer
10.5.19.1
Published
Aug 21, 2010
Tracked Since
Feb 18, 2026