Alexander V. Lukyanov Lftp — known CVE vulnerabilities
Every CVE whose affected-product data names Alexander V. Lukyanov Lftp, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2003-0963 — CVSS 7.5 (high): Buffer overflows in (1) try_netscape_proxy and (2) try_squid_eplf for lftp 2.6.9 and earlier allow remote HTTP servers to execute arbitrary…
CVE-2010-2251 — CVSS 7.5 (high): The get1 command, as used by lftpget, in LFTP before 4.0.6 does not properly validate a server-provided filename before determining the…
CVE-2007-2348 — CVSS 6.8 (medium): mirror --script in lftp before 3.5.9 does not properly quote shell metacharacters, which might allow remote user-assisted attackers to…