CVE-2010-20103
A malicious backdoor was embedded in the official ProFTPD 1.3.3c source tarball distributed between November 28 and December 2, 2010. The ba
CVSS
9.8
Critical
EPSS
4.8%
p91
KEV
—
Exploit Today
27
0-100
Published: Aug 20, 2025 · Last modified: Jul 15, 2026 · CWE-912
4.8%EPSS · 30 days4.8%
2026-06-302026-07-16
A malicious backdoor was embedded in the official ProFTPD 1.3.3c source tarball distributed between November 28 and December 2, 2010. The backdoor implements a hidden FTP command trigger that, when invoked, causes the server to execute arbitrary shell commands with root privileges. This allows remote, unauthenticated attackers to run any OS command on the FTP server host.
- www.proftpd.orghttp://www.proftpd.org/
- advisories.checkpoint.comhttps://advisories.checkpoint.com/defense/advisories/public/2011/cpai-2010-151.html/
- github.comhttps://github.com/proftpd/proftpd
- raw.githubusercontent.comhttps://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/unix/ftp/proftpd_133c_backdoor.rb
- web.archive.orghttps://web.archive.org/web/20111107212129/http://rsync.proftpd.org/
- www.exploit-db.comhttps://www.exploit-db.com/exploits/15662
- www.exploit-db.comhttps://www.exploit-db.com/exploits/16921
- www.vulncheck.comhttps://www.vulncheck.com/advisories/proftpd-backdoor-command-execution
- raw.githubusercontent.comhttps://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/unix/ftp/proftpd_133c_backdoor.rb
- www.exploit-db.comhttps://www.exploit-db.com/exploits/15662
- www.exploit-db.comhttps://www.exploit-db.com/exploits/16921
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2026-47699.8 CRI36.1%
——11Certain devices in the WAGO System I/O Field series activate an internal diagnostic capability during the initial startup sequence. This functionality is not formally documented and becomes accessible without authentication for a brief period in the early boot phase. During this window, an unauthenticated remote attacker can gain access to the internal system processes, resulting in full system compromise.3dCVE-2026-347697.7 HIG21.4%
——6Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. Prior to versions 38.8.6, 39.8.0, 40.7.0, and 41.0.0-beta.8, an undocumented commandLineSwitches webPreference allowed arbitrary switches to be appended to the renderer process command line. Apps that construct webPreferences by spreading untrusted configuration objects may inadvertently allow an attacker to inject switches that disable renderer sandboxing or web security controls. Apps are only affected if they construct webPreferences from external or untrusted input without an allowlist. Apps that use a fixed, hardcoded webPreferences object are not affected. This issue has been patched in versions 38.8.6, 39.8.0, 40.7.0, and 41.0.0-beta.8.2d