Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2008-7262

Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.3.0 allow remote authenticated users to access arbitrary files and directories via vectors involving a symlink in a pathname to a (1) CWD, (2) DELE, (3) STOR, or (4) RETR command.

CVSS v2:

  • Severity: Medium
  • Score: 6.5
  • AV:N/AC:L/Au:S/C:P/I:P/A:P

CWEs:

OWASP TOP 10:

Software From Fixed in
g.rodola / pyftpdlib 0.1 0.1.x
g.rodola / pyftpdlib 0.1.1 0.1.1.x
g.rodola / pyftpdlib - 0.2.0.x
pyftpdlib - 0.3.0