Datawizard : Security Vulnerabilities, CVEs,
DataWizard Technologies FtpXQ FTP Server 3.0 allows remote authenticated users to cause a denial of service (crash) via a long ABOR command.
Max CVSS
4.0
EPSS Score
1.58%
Published
2009-10-05
Updated
2017-09-19
FtpXQ Server 3.0.1 installs with two default testing accounts, which allows remote attackers to read or write arbitrary files via unknown vectors. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
Max CVSS
6.4
EPSS Score
0.28%
Published
2006-10-27
Updated
2008-09-05
FtpXQ Server 3.0.1 allows remote attackers to cause a denial of service (CPU exhaustion) via a long MKD command.
Max CVSS
5.0
EPSS Score
10.92%
Published
2006-10-27
Updated
2017-07-20
Buffer overflow in FtpXQ 2.5 allows remote attackers to cause a denial of service (crash) via a MKD command with a long directory name.
Max CVSS
5.0
EPSS Score
0.28%
Published
2002-12-31
Updated
2008-09-05
The default configuration of DataWizard FtpXQ 2.0 and 2.1 includes a default username and password, which allows remote attackers to read and write arbitrary files in the root folder.
Max CVSS
6.4
EPSS Score
0.29%
Published
2001-12-18
Updated
2008-09-10
Directory traversal in DataWizard WebXQ server 1.204 allows remote attackers to view files outside of the web root via a .. (dot dot) attack.
Max CVSS
5.0
EPSS Score
0.86%
Published
2001-06-27
Updated
2017-10-10
Directory traversal vulnerability in FtpXQ FTP server 2.0.93 allows remote attackers to read arbitrary files via a .. (dot dot) in the GET command.
Max CVSS
5.0
EPSS Score
5.19%
Published
2001-05-03
Updated
2008-09-05
7 vulnerabilities found