module
Wing FTP Server NULL-byte Authentication Bypass (CVE-2025-47812)
| Disclosed |
|---|
| Jun 30, 2025 |
Disclosed
Jun 30, 2025
Description
Wing FTP Server allows arbitrary Lua code injection via a NULL-byte (%00) truncation bug (CVE-2025-47812).
Supplying %00 as the username makes the C++ authentication routine validate only the prefix,
while the full string is written unfiltered into the session file and later executed with root/SYSTEM privileges,
leading to Remote Code Execution.
Supplying %00 as the username makes the C++ authentication routine validate only the prefix,
while the full string is written unfiltered into the session file and later executed with root/SYSTEM privileges,
leading to Remote Code Execution.
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.