Software catalogue for CrushFTP

Cross-site scripting in CrushFTP13 Jun, 2025
Low Patched

Missing authorization in CrushFTP26 Mar, 2025
Critical Patched Public exploit Exploited

Account takeover via password reset feature in CrushFTP26 Mar, 2025
Medium Patched

Cross-site scripting in CrushFTP26 Mar, 2025
Low Patched

Cross-site scripting in CrushFTP21 Nov, 2024
Medium Patched

Arbitrary file download in CrushFTP22 Apr, 2024
High Patched Zero Day Public exploit

Open redirect in CrushFTP26 Dec, 2019
Low Patched

CRLF injection in CrushFTP02 Sep, 2017
Medium Patched

Deserialization of Untrusted Data in CrushFTP01 Sep, 2017
High Patched

Cross-site scripting in CrushFTP01 Sep, 2017
Low Patched