Arbitrary File Read and Write Vulnerability in ProFTPD 1.3.5

Arbitrary File Read and Write Vulnerability in ProFTPD 1.3.5

CVE-2015-3306 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The mod_copy module in ProFTPD 1.3.5 allows remote attackers to read and write to arbitrary files via the site cpfr and site cpto commands.

Learn more about our Web Application Penetration Testing UK.