Description

A critical server-side template injection (SSTI) vulnerability in CrushFTP enables unauthenticated attackers to read sensitive files outside the VFS Sandbox, bypass authentication to gain administrative access, and execute arbitrary code on the server.

Remediation

Upgrade to the latest version of CrushFTP

References

CVE-2024-4040

CrushFTP Official Update Instructions

Related Vulnerabilities

phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-28106)

mod_ssl Other Vulnerability (CVE-2002-0082)

Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-48007)

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-7134)

PHP Other Vulnerability (CVE-2002-0229)

Severity

Critical

Classification

CVE-2024-4040 CWE-94 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L

Tags

Server Side Template Injection Code Execution Known Vulnerabilities