Accellion Fta
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Accellion Fta.
Known Exploited Accellion Fta Vulnerabilities
The following Accellion Fta vulnerabilities have been marked by CISA as Known to be Exploited by threat actors.
| Title | Description | Added |
|---|---|---|
| Accellion FTA OS Command Injection Vulnerability |
Accellion FTA 9_12_370 and earlier is affected by OS command execution via a crafted POST request to various admin endpoints. CVE-2021-27104 Exploit Probability: 6.4% |
November 3, 2021 |
| Accellion FTA OS Command Injection Vulnerability |
Accellion FTA 9_12_411 and earlier is affected by OS command execution via a local web service call. CVE-2021-27102 Exploit Probability: 0.2% |
November 3, 2021 |
| Accellion FTA SQL Injection Vulnerability |
Accellion FTA 9_12_370 and earlier is affected by SQL injection via a crafted Host header in a request to document_root.html. CVE-2021-27101 Exploit Probability: 0.8% |
November 3, 2021 |
| Accellion FTA SSRF Vulnerability |
Accellion FTA 9_12_411 and earlier is affected by SSRF via a crafted POST request to wmProgressstat.html. CVE-2021-27103 Exploit Probability: 2.7% |
November 3, 2021 |
By the Year
In 2026 there have been 0 vulnerabilities in Accellion Fta. Fta did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 6 | 8.85 |
It may take a day or so for new Fta vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Accellion Fta Security Vulnerabilities
Accellion FTA 9_12_432 and earlier is affected by argument injection via a crafted POST request to an admin endpoint
CVE-2021-27730
9.8 - Critical
- March 02, 2021
Accellion FTA 9_12_432 and earlier is affected by argument injection via a crafted POST request to an admin endpoint. The fixed version is FTA_9_12_444 and later.
Injection
Accellion FTA 9_12_432 and earlier is affected by stored XSS via a crafted POST request to a user endpoint
CVE-2021-27731
6.1 - Medium
- March 02, 2021
Accellion FTA 9_12_432 and earlier is affected by stored XSS via a crafted POST request to a user endpoint. The fixed version is FTA_9_12_444 and later.
XSS
Accellion FTA 9_12_370 and earlier is affected by SQL injection via a crafted Host header in a request to document_root.html
CVE-2021-27101
9.8 - Critical
- February 16, 2021
Accellion FTA 9_12_370 and earlier is affected by SQL injection via a crafted Host header in a request to document_root.html. The fixed version is FTA_9_12_380 and later.
Accellion FTA 9_12_411 and earlier is affected by OS command execution via a local web service call
CVE-2021-27102
7.8 - High
- February 16, 2021
Accellion FTA 9_12_411 and earlier is affected by OS command execution via a local web service call. The fixed version is FTA_9_12_416 and later.
Shell injection
Accellion FTA 9_12_411 and earlier is affected by SSRF via a crafted POST request to wmProgressstat.html
CVE-2021-27103
9.8 - Critical
- February 16, 2021
Accellion FTA 9_12_411 and earlier is affected by SSRF via a crafted POST request to wmProgressstat.html. The fixed version is FTA_9_12_416 and later.
SSRF
Accellion FTA 9_12_370 and earlier is affected by OS command execution via a crafted POST request to various admin endpoints
CVE-2021-27104
9.8 - Critical
- February 16, 2021
Accellion FTA 9_12_370 and earlier is affected by OS command execution via a crafted POST request to various admin endpoints. The fixed version is FTA_9_12_380 and later.
Shell injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Accellion Fta or by Accellion? Click the Watch button to subscribe.
