Browse all 5 CVE security advisories affecting Wftpserver. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Wftpserver serves as a lightweight FTP server for secure file transfers in Windows environments. Historically, it has been susceptible to remote code execution vulnerabilities due to buffer overflows in command processing, cross-site scripting flaws through improper input sanitization, and privilege escalation weaknesses in access control mechanisms. The software has faced five publicly disclosed CVEs, including critical RCE issues in versions prior to 3.0, where attackers could execute arbitrary code via crafted FTP commands. While no major security incidents have been widely documented, the persistent pattern of vulnerabilities in input handling and access controls suggests rigorous hardening and regular patching are essential for secure deployment.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2019-25267 | Wing FTP Server 6.0.7 - Unquoted Service Path — Wing FTP ServerCWE-428 | 7.8 | High | 2026-02-04 |
| CVE-2025-27889 | 多款产品安全漏洞 — Wing FTP ServerCWE-15 | 3.4 | Low | 2025-07-10 |
| CVE-2025-47813 | Wing FTP Server 安全漏洞 — Wing FTP ServerCWE-209 | 4.3 | Medium | 2025-07-10 |
| CVE-2025-47812 | Wing FTP Server 7.4.3及 安全漏洞 — Wing FTP ServerCWE-158 | 10.0 | Critical | 2025-07-10 |
| CVE-2025-47811 | Wing FTP Server 安全漏洞 — Wing FTP ServerCWE-267 | 4.1 | Medium | 2025-07-10 |
This page lists every published CVE security advisory associated with Wftpserver. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.