Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package ftp-srv, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2020-15152 — CVSS 9.1 (critical): ftp-srv is an npm package which is a modern and extensible FTP server designed to be simple yet configurable. In ftp-srv before versions…
CVE-2020-26299 — CVSS 6.3 (medium): ftp-srv is an open-source FTP server designed to be simple yet configurable. In ftp-srv before version 4.4.0 there is a path-traversal…