Richard Tan

**Name of the Vulnerable Software and Affected Versions** SolarWinds Serv-U FTP Server version 15.1.7 **Description** A CSV injection issue exists in the web UI. **Recommendations** For SolarWinds Serv-U FTP Server version 15.1.7, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** SolarWinds Serv-U FTP Server version 15.1.7 **Description** A stored cross-site scripting (XSS) issue exists in the web UI. **Recommendations** For SolarWinds Serv-U FTP Server version 15.1.7, update to a version that fixes this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.