CVE-2010-3867
NUCLEIProftpd - Path Traversal
Title source: ruleDescription
Multiple directory traversal vulnerabilities in the mod_site_misc module in ProFTPD before 1.3.3c allow remote authenticated users to create directories, delete directories, create symlinks, and modify file timestamps via directory traversal sequences in a (1) SITE MKDIR, (2) SITE RMDIR, (3) SITE SYMLINK, or (4) SITE UTIME command.
Nuclei Templates (1)
ProFTPD < 1.3.3c - Directory Traversal via mod_site_misc
HIGHVERIFIEDby pussycat0x
Shodan:
product:"proftpd" || cpe:"cpe:2.3:a:proftpd:proftpd"
References (17)
Scores
EPSS
0.0038
EPSS Percentile
59.3%
Details
CWE
CWE-22
Status
published
Products (5)
proftpd/proftpd
1.2.10 (4 CPE variants)
proftpd/proftpd
1.3.0 (7 CPE variants)
proftpd/proftpd
1.3.1 (4 CPE variants)
proftpd/proftpd
1.3.2 (10 CPE variants)
proftpd/proftpd
1.3.3 (7 CPE variants)
Published
Nov 09, 2010
Tracked Since
Feb 18, 2026