[POC] CVE-2024-28995 Directory Traversal Vulnerability affecting SolarWinds Serv-U

JOIN BREACHFORUMS NEW TELEGRAM

by Unethical - Monday June 17, 2024 at 04:30 PM

Unethical

MVP User

Posts: 53

Threads: 6

Joined: May 2024

Reputation: 79

Jun 17, 2024, 04:30 PM (This post was last modified: Jun 17, 2024, 04:31 PM by Unethical.)

SolarWinds Serv-U was susceptible to a directory transversal vulnerability that would allow access to read sensitive files on the host machine.

POC: https://github.com/rapid7/metasploit-fra...pull/19255

Search Query:

Hunter: protocol.banner="Serv-U FTP"
FOFA: app="SolarWinds-Serv-U-FTP"
SHODAN: product:"Serv-U ftpd"

This is not my work, just thought I would share.

« Next Oldest | Next Newest »

Possibly Related Threads…
Thread		Author	Replies	Views	Last Post
	POC CVE-2025-24071	caca28sapo1	17	1,225	5 hours ago Last Post: Test689
	New Zer0 Day Wordpress	A3g00n	83	4,233	May 11, 2026, 08:17 PM Last Post: j4ng0
	{SECRET} DATABASE OF EXPLOITS	lulagain	441	28,191	May 11, 2026, 05:41 PM Last Post: chiki
	Google Dorks for finding SQL injection vulnerabilities and other security issues	1yush	69	3,773	May 11, 2026, 03:55 PM Last Post: fkmonkey
	CVE-2024-32002 RCE PoC	HA_twck	2	585	May 11, 2026, 01:33 PM Last Post: newxiao1

Forum Jump:

Users browsing this forum: 1 Guest(s)