Monstaftp Monsta_ftp

6 CVEs affecting Monstaftp Monsta_ftp. Latest disclosed: 2025-11-07. Critical: 5, High: 0.

Top CVEs affecting Monstaftp Monsta_ftp
CVESeverityScorePublishedSummary
CVE-2025-34299Critical9.82025-11-07Monsta FTP versions 2.11 and earlier contain a vulnerability that allows unauthenticated arbitrary file uploads. This flaw enables attackers to execute arbitra…
CVE-2022-27469Critical9.82022-04-26Monstaftp v2.10.3 was discovered to allow attackers to execute Server-Side Request Forgery (SSRF).
CVE-2022-27468Critical9.82022-04-26Monstaftp v2.10.3 was discovered to contain an arbitrary file upload which allows attackers to execute arbitrary code via a crafted file uploaded to the web se…
CVE-2020-14057Critical9.82020-07-01Monsta FTP 2.10.1 or below allows external control of paths used in filesystem operations. This allows attackers to read and write arbitrary local files, allow…
CVE-2020-14056Critical9.82020-07-01Monsta FTP 2.10.1 or below is prone to a server-side request forgery vulnerability due to insufficient restriction of the web fetch functionality. This allows…
CVE-2020-14055Medium6.12020-07-01Monsta FTP 2.10.1 or below is prone to a stored cross-site scripting vulnerability in the language setting due to insufficient output encoding.