KEV Entry
CVE-2025-47812
Known Exploited Vulnerability Entry External Catalog
Entry Details
Confirmed Exploited2026-06-01 10:36 UTC
Timestamps
2026-06-01
2026-06-01
Scope
KEVIntel entry: In Wing FTP Server before 7.4.4. the user and admin web interfaces mishandle '\0' bytes, ultimately allowing injection of arbitrary Lua code into... | Affected: wftpserver / Wing FTP Server | CVSS: 10.0 (CRITICAL) | EPSS: 0.95343 | Used in malware: unknown | Not yet in CISA KEV: False
References
- {'id': 'CVE-2025-47812', 'url': 'https://www.cve.org/CVERecord?id=CVE-2025-47812'}
- {'id': 'kevintel', 'url': 'https://kevintel.com/vuln/CVE-2025-47812'}
1efd9642-4ca1-4082-b5ae-bb6e9a2579a5
caeb2787-0d58-4236-9039-7c86c3e566f3
2026-06-23 14:03 UTC
2026-06-23 14:03 UTC
Evidence
1| Type | Source | Signal | Confidence | Details | GCVE Metadata |
|---|---|---|---|---|---|
| public_report | kevintel | successful_exploitation | 0.70 |
View details
|
- |