CVE-2014-1841

NUCLEI

Titan FTP Server <10.40.1829 - Path Traversal

Title source: llm

Description

Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remote attackers to copy an arbitrary user's home folder via a Move action with a .. (dot dot) in the src parameter.

Exploits (1)

exploitdb WRITEUP

by Fara Rustein · textwebappswindows

https://www.exploit-db.com/exploits/31579

View Code ZIP pw:eip

Nuclei Templates (1)

Titan FTP Server < 10.40 Move Function - Directory Traversal

MEDIUMVERIFIEDby pussycat0x

Shodan: product:"Titan ftpd"

References (4)

[Third Party Advisory] http://archives.neohapsis.com/archives/fulldisclosure/2014-02/0092.html

[Third Party Advisory, VDB Entry] http://www.osvdb.org/103195

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/65462

[Exploit, Third Party Advisory] http://www.exploit-db.com/exploits/31579

Scores

EPSS 0.0379

EPSS Percentile 88.1%

Details

CWE

CWE-22

Status published

Products (4)

southrivertech/titan_ftp_server 10.0.1733

southrivertech/titan_ftp_server 10.01.1740

southrivertech/titan_ftp_server 10.30

southrivertech/titan_ftp_server < 10.40

Published Apr 29, 2014

Tracked Since Feb 18, 2026