Main Vulnerability Database Exploits ID:5940 - Exploit for Path traversal in Titan FTP Server - CVE-2019-10009

ID:5940 - Exploit for Path traversal in Titan FTP Server - CVE-2019-10009

Published: June 17, 2021

Vulnerability identifier: #VU35857

Vulnerability risk: Medium

CVE-ID: CVE-2019-10009

CWE-ID: CWE-22

Exploitation vector: Remote access

Vulnerable software:
Titan FTP Server

Link to public exploit:

https://www.exploit-db.com/exploits/46611/

Vulnerability description

The vulnerability allows a remote authenticated user to gain access to sensitive information.

A Directory Traversal issue was discovered in the Web GUI in Titan FTP Server 2019 Build 3505. When an authenticated user attempts to preview an uploaded file (through PreviewHandler.ashx) by using a .... technique, arbitrary files can be loaded in the server response outside the root directory.

Remediation

Install update from vendor's website.

ID:5940 - Exploit for Path traversal in Titan FTP Server - CVE-2019-10009

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human