Exploit for Unprotected Alternate Channel in Crushftp

July 26, 2025 invoker category_exploit

Exploit Details

Basic Information

Exploit Title Exploit for Unprotected Alternate Channel in Crushftp
Exploit ID 669FB686-424E-59DA-B6D6-A411C03E91E6
Type githubexploit
Published 2025-07-26T14:51:15
Modified 2025-07-26T15:03:34

CVSS Information

CVSS Score 9.8
Severity CRITICAL
Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Analysis

AI Description An unauthenticated remote command execution vulnerability in CrushFTP, allowing attackers to execute arbitrary commands on the server.
AI Severity Critical
AI Vendor CrushFTP
AI Product CrushFTP

CVE Information

  • CVE-2025-54309

Exploit Description

💥 CVE-2025-54309 – CrushFTP Unauthenticated Remote Command Execution Exploit PoC by Issam Junior 🚨 Vulnerability Overview CVE: CVE-2025-54309 CVSS: 9.8 (Critical) Product:…

View Full Exploit Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.