ftp-srv@3.0.3 vulnerabilities
Modern, extensible FTP Server
-
latest version
4.6.3
-
latest non vulnerable version
-
first published
7 years ago
-
latest version published
6 months ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the ftp-srv package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
ftp-srv is a Modern, extensible FTP Server Affected versions of this package are vulnerable to Directory Traversal. In affected versions of the module, there is a path traversal vulnerability. Clients of FTP servers utilizing How to fix Directory Traversal? Upgrade |
<4.4.0
|
ftp-srv is a Modern, extensible FTP Server Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF). The client can send an arbitrary IP with the PORT command, which can be used to cause the server to make a connection elsewhere. How to fix Server-side Request Forgery (SSRF)? Upgrade |
>=1.0.0 <4.3.4
|