ProFTPd Arbitrary File Copy Vulnerability (CVE-2019-12815) Threat Alert
August 12, 2019
Overview
Recently, an official security bulletin was released to announce the remediation of an arbitrary file copy vulnerability (CVE-2019-12815) in ProFTPd. This vulnerability lies in the custom SITE CPFR and SITE CPTO operations in the mod_copy module. By issuing the two commands to ProFTPd, an attacker can copy any file on the FTP server without permission. (more…)