PT-2026-26637 · Unknown · Ftp Service
Milan Solanki
·
Published
2026-03-20
·
Updated
2026-03-22
·
CVE-2026-22895
CVSS v3.1
4.8
Medium
| Vector | AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
QuFTP Service versions prior to 1.4.3
QuFTP Service versions prior to 1.5.2
QuFTP Service versions prior to 1.6.2
Description
A cross-site scripting (XSS) issue exists in QuFTP Service. A remote attacker who obtains an administrator account can exploit this issue to circumvent security measures or access application data.
Recommendations
Update QuFTP Service to version 1.4.3 or later.
Update QuFTP Service to version 1.5.2 or later.
Update QuFTP Service to version 1.6.2 or later.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ftp Service