CNNVD-202602-1172 Information
Feb 07, 2026
cve
CNNVD ID
CNNVD-202602-1172
Related CVE
- CNNVD Published: 2026-02-07
Description (Chinese)
Wing FTP Server是Wing FTP Server开源的一套跨平台的FTP服务器软件。 Wing FTP Server 6.2.7之前版本存在跨站请求伪造漏洞,该漏洞源于Web管理界面存在跨站请求伪造,可能导致攻击者删除管理员用户。
Description (English)
Wing FTP Server is a cross-platform FTP server software from Wing FTP Server Open Source. Wing FTP Server 6.2.7 had a cross-site request forgery loophole, which stemmed from the existence of a cross-site request for forgery in the Web management interface, which could lead the attackers to delete the administrator user.
Hazard Level
High
Vulnerability Type
跨站请求伪造
Affected Vendor
Wing FTP Server
Published
2026-02-07
Last Modified
2026-02-24
References
https://www.exploit-db.com/exploits/48200 https://www.vulncheck.com/advisories/wing-ftp-server-cross-site-request-forgery https://www.wftpserver.com https://www.wftpserver.com/serverhistory.htm
Patch
https://www.wftpserver.com/download.htm
Share on: