Vulnerabilities > Lftp Project > Lftp > 3.6.0

DATE CVE VULNERABILITY TITLE RISK
2018-08-01 CVE-2018-10916 Improper Input Validation vulnerability in multiple products
It has been discovered that lftp up to and including version 4.8.3 does not properly sanitize remote file names, leading to a loss of integrity on the local system when reverse mirroring is used.
7.8