Vulnerabilities > Progress > WS FTP Server

DATE CVE VULNERABILITY TITLE RISK
2023-04-03 CVE-2022-27665 Cross-site Scripting vulnerability in Progress WS FTP Server 8.6.0
Reflected XSS (via AngularJS sandbox escape expressions) exists in Progress Ipswitch WS_FTP Server 8.6.0.
network
low complexity
progress CWE-79
6.1
6.1
2023-02-03 CVE-2023-24029 Incorrect Authorization vulnerability in Progress WS FTP Server
In Progress WS_FTP Server before 8.8, it is possible for a host administrator to elevate their privileges via the administrative interface due to insufficient authorization controls applied on user modification workflows.
network
low complexity
progress CWE-863
7.2
7.2
2019-06-11 CVE-2019-12143 Path Traversal vulnerability in Progress WS FTP Server
A Directory Traversal issue was discovered in SSHServerAPI.dll in Progress ipswitch WS_FTP Server 2018 before 8.6.1.
network
low complexity
progress CWE-22
5.3
5.3