CrushFTP 漏洞列表

CrushFTP 10 before 10.8.5 and 11 before 11.3.4_23, when the DMZ proxy feature is not used, mishandles AS2 validation and consequently allows remote attackers to obtain admin access via HTTPS, as exploited in the wild in July 2025.

CrushFTP prior to 10.5.1 is vulnerable to Improperly Controlled Modification of Dynamically-Determined Object Attributes.

VFS Sandbox Escape in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms allows remote attackers with low privileges to read files from the filesystem outside of VFS Sandbox.

CrushFTP versions 10.0.0 through 10.8.3 and 11.0.0 through 11.3.0 are affected by a vulnerability that may result in unauthenticated access. Remote and unauthenticated HTTP requests to CrushFTP may allow attackers to gain unauthorized access.

CrushFTP 10.0.0至10.8.3版本以及11.0.0至11.3.0版本存在身份验证绕过漏洞，攻击者可通过构造特殊的HTTP请求绕过身份验证，最终可能导致系统完全沦陷。

CrushFTP 是一种流行的文件传输服务器软件，版本 10.0.0 至 10.8.3 和 11.0.0 至 11.3.0 存在身份验证绕过漏洞。攻击者可以通过发送特制的 HTTP 请求，绕过身份验证机制，获得未经授权的访问权限。这可能导致敏感数据泄露或进一步的攻击。