A critical security flaw in Wing FTP Server, CVE-2025-47812, is actively exploited, allowing remote code execution through null-byte injection. Users are urged to update to version 7.4.4 or later to mitigate this high-severity threat. #WingFTPServer #CVE-2025-47812
Keypoints
- The vulnerability exploits improper handling of null (β) bytes in the serverβs web interface.
- Attackers can execute arbitrary Lua code with the privileges of the FTP service.
- Active exploitation was observed shortly after the vulnerability was disclosed.
- Threat actors have used the flaw to download malicious Lua files, perform reconnaissance, and create persistence.
- More than 5,000 Wing FTP Server instances with exposed web interfaces are at risk, mainly in the US, China, Germany, the UK, and India.
Read More: https://thehackernews.com/2025/07/critical-wing-ftp-server-vulnerability.html