Monsta Ftp

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2025-34299 CRITICAL POC THREAT Act Now

Monsta FTP web-based file manager versions 2.11 and earlier allow unauthenticated arbitrary file uploads. The vulnerability enables attackers to upload malicious files from a compromised FTP server, which are then executed on the Monsta FTP server, achieving remote code execution.

File Upload RCE Monsta Ftp

NVD

CVSS 4.0

9.3

EPSS

58.8%

CVE-2025-34299

EPSS 59% CVSS 9.3

CRITICAL POC THREAT Act Now

Monsta FTP web-based file manager versions 2.11 and earlier allow unauthenticated arbitrary file uploads. The vulnerability enables attackers to upload malicious files from a compromised FTP server, which are then executed on the Monsta FTP server, achieving remote code execution.

File Upload RCE Monsta Ftp

NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy