CVE-2006-3015

CVE-2006-3015 · HIGH Severity

AV:N/AC:H/AU:N/C:C/I:C/A:N

Argument injection vulnerability in WinSCP 3.8.1 build 328 allows remote attackers to upload or download arbitrary files via encoded spaces and double-quote characters in a scp or sftp URI.

Learn more about our Web Application Penetration Testing UK.