Known Vulnerabilities for Proftpd by Proftpd
Listed below are 10 of the newest known vulnerabilities associated with "Proftpd" by "Proftpd".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-44331 json | In ProFTPD through 1.3.9a before 7666224, a SQL injection vulnerability in sqltab_fetch_clients_cb() in contrib/mod_wrap2_sql... | Not Provided | 2026-05-05 | 2026-05-06 |
| CVE-2026-42167 json | mod_sql in ProFTPD before 1.3.9a allows remote attackers to execute arbitrary code via a username, in scenarios where there i... | Not Provided | 2026-04-28 | 2026-05-01 |
| CVE-2023-48795 json | The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote att... | Not Provided | 2023-12-18 | 2026-05-12 |
| CVE-2021-46854 json | mod_radius in ProFTPD before 1.3.7c allows memory disclosure to RADIUS servers because it copies blocks of 16 characters. | 7.5 - HIGH | 2022-11-23 | 2023-05-03 |
| CVE-2020-9273 json | In ProFTPD 1.3.7, it is possible to corrupt the memory pool by interrupting the data transfer channel. This triggers a use-af... | 8.8 - HIGH | 2020-02-20 | 2023-11-07 |
| CVE-2020-9272 json | ProFTPD 1.3.7 has an out-of-bounds (OOB) read vulnerability in mod_cap via the cap_text.c cap_to_text function. | 7.5 - HIGH | 2020-02-20 | 2021-11-09 |
| CVE-2019-19272 json | An issue was discovered in tls_verify_crl in ProFTPD before 1.3.6. Direct dereference of a NULL pointer (a variable initializ... | 7.5 - HIGH | 2019-11-26 | 2019-12-11 |
| CVE-2019-19271 json | An issue was discovered in tls_verify_crl in ProFTPD before 1.3.6. A wrong iteration variable, used when checking a client ce... | 7.5 - HIGH | 2019-11-26 | 2019-12-11 |
| CVE-2019-19270 json | An issue was discovered in tls_verify_crl in ProFTPD through 1.3.6b. Failure to check for the appropriate field of a CRL entr... | 7.5 - HIGH | 2019-11-26 | 2023-11-07 |
| CVE-2019-19269 json | An issue was discovered in tls_verify_crl in ProFTPD through 1.3.6b. A dereference of a NULL pointer may occur. This pointer ... | 4.9 - MEDIUM | 2019-11-30 | 2023-11-07 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Proftpd | Proftpd | 1.3.7 | |||
| Application | Proftpd | Proftpd | 1.3.7 | |||
| Application | Proftpd | Proftpd | 1.3.6c | |||
| Application | Proftpd | Proftpd | 1.3.6 | |||
| Application | Proftpd | Proftpd | 1.3.6 | |||
| Application | Proftpd | Proftpd | 1.3.6 | |||
| Application | Proftpd | Proftpd | 1.3.6 | |||
| Application | Proftpd | Proftpd | 1.3.6 | |||
| Application | Proftpd | Proftpd | 1.3.6 | |||
| Application | Proftpd | Proftpd | 1.3.6 | |||
| Application | Proftpd | Proftpd | 1.3.6 | |||
| Application | Proftpd | Proftpd | 1.3.6 | |||
| Application | Proftpd | Proftpd | 1.3.6 | |||
| Application | Proftpd | Proftpd | 1.3.5e | |||
| Application | Proftpd | Proftpd | 1.3.5d | |||
| Application | Proftpd | Proftpd | 1.3.5c | |||
| Application | Proftpd | Proftpd | 1.3.5b | |||
| Application | Proftpd | Proftpd | 1.3.5a | |||
| Application | Proftpd | Proftpd | 1.3.5 | |||
| Application | Proftpd | Proftpd | 1.3.5 |