Lachlan. H

Name of the Vulnerable Software and Affected Versions: RaidenFTPD versions prior to 2.4.2241 Description: A directory traversal issue allows remote attackers to read arbitrary files by including a ".." (dot dot backslash) in the urlget site command. Recommendations: For versions prior to 2.4.2241, update to version 2.4.2241 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Golden FTP server pro version 2.52 Description: A directory traversal issue allows remote attackers to read arbitrary files by using a ".." (backward slash dot dot) with a leading "" (double quote) in the GET command. Recommendations: For Golden FTP server pro version 2.52, update to a newer version that addresses this issue, as using a ".." with a leading "" in the GET command can allow unauthorized access to files. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Golden FTP Server Pro version 2.52 Description: The issue allows remote attackers to obtain sensitive information via a GET request for a non-existent file, which reveals the absolute path of the FTP server in the resulting error message. Recommendations: For Golden FTP Server Pro version 2.52, consider updating to a newer version that addresses this issue, as the current version reveals sensitive information through FTP error messages when a non-existent file is requested.