Browse all 3 CVE security advisories affecting FileZilla. AI-powered Chinese analysis, POCs, and references for each vulnerability.
FileZilla serves as a widely used open-source FTP, SFTP, and FTPS client for file transfers between local and remote systems. Historically, it has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often through improper input validation or insecure handling of network connections. While no major security incidents have been widely documented, the application maintains a moderate CVE count with three active records, primarily focusing on memory corruption and boundary errors. Its security posture benefits from regular updates and community scrutiny, though users should remain vigilant when connecting to untrusted servers due to the inherent risks of file transfer protocols.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2015-10003 | FileZilla Server PORT confused deputy — ServerCWE-441 | 4.3 | Medium | 2022-07-17 |
This page lists every published CVE security advisory associated with FileZilla. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.