This page lists publicly disclosed CVE vulnerabilities affecting pi-soft spoonftp (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2002-0139 | Pi-Soft SpoonFTP 1.1 and earlier allows remote attackers to redirect traffic to other sites (aka FTP bounce) via the PORT command. | [email protected] | 7.5 | 1.06% | 2002-03-25 | 2026-04-16 |
| CVE-2001-0963 | Directory traversal vulnerability in SpoonFTP 1.1 allows local and sometimes remote attackers to access files outside of the FTP root via a ... (modified dot dot) in the CD (CWD) command. | [email protected] | 7.5 | 1.19% | 2001-09-20 | 2026-04-16 |
| CVE-2001-0781 | Buffer overflow in SpoonFTP 1.0.0.12 allows remote attackers to execute arbitrary code via a long argument to the commands (1) CWD or (2) LIST. | [email protected] | 7.5 | 2.84% | 2001-05-30 | 2026-04-16 |