Wing FTP Server RCE via null byte injection before 7.4.4
CVE-2025-47812 Published on July 10, 2025

In Wing FTP Server before 7.4.4. the user and admin web interfaces mishandle '\0' bytes, ultimately allowing injection of arbitrary Lua code into user session files. This can be used to execute arbitrary system commands with the privileges of the FTP service (root or SYSTEM by default). This is thus a remote code execution vulnerability that guarantees a total server compromise. This is also exploitable via anonymous FTP accounts.

NVD

Known Exploited Vulnerability

This Wing FTP Server Improper Neutralization of Null Byte or NUL Character Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. Wing FTP Server contains an improper neutralization of null byte or NUL character vulnerability that can allow injection of arbitrary Lua code into user session files. This can be used to execute arbitrary system commands with the privileges of the FTP service (root or SYSTEM by default).

The following remediation steps are recommended / required by August 4, 2025: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Weakness Type

Improper Neutralization of Null Byte or NUL Character

The software receives input from an upstream component, but it does not neutralize or incorrectly neutralizes NUL characters or null bytes when they are sent to a downstream component. As data is parsed, an injected NUL character or null byte may cause the software to believe the input is terminated earlier than it actually is, or otherwise cause the input to be misinterpreted. This could then be used to inject potentially dangerous input that occurs after the null byte or otherwise bypass validation routines and other protection mechanisms.


Products Associated with CVE-2025-47812

Want to know whenever a new CVE is published for Wftpserver Wing Ftp Server? stack.watch will email you.

Wftpserver Wing Ftp Server
 

Affected Versions

wftpserver Wing FTP Server:

Exploit Probability

EPSS
92.48%
Percentile
99.74%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.