Exploit for CrushFTP RCE Chain Released, Patch Now
Exploit for CrushFTP RCE Chain Released, Patch Now
20 November 2023
The vulnerability allows attackers to access files, execute code, and obtain passwords. The exploit takes advantage of an unauthenticated mass-assignment vulnerability and AS2 header parsing.