CVE-2024-11986
CRITICALCrushFTP 10.0.0 through 10.8.2 and 11.0.0 through 11.2.1 - Stored XSS via Host Header
Title source: llmDescription
Improper input handling in the 'Host Header' allows an unauthenticated attacker to store a payload in web application logs. When an Administrator views the logs using the application's standard functionality, it enables the execution of the payload, resulting in Stored XSS or 'Cross-Site Scripting'.
References (1)
Core 1
Core References
Various Sources
https://crushftp.com/crush11wiki/Wiki.jsp?page=Update
Scores
CVSS v3
9.6
EPSS
0.0055
EPSS Percentile
42.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-79
Status
published
Products (2)
CrushFTP, LLC/CrushFTP
10.0.0 - 10.8.2
CrushFTP, LLC/CrushFTP
11.0.0 - 11.2.1
Published
Dec 13, 2024
Tracked Since
Feb 18, 2026