CrushFTP zero-day exploited in attacks to gain admin access on servers

July 18, 2025

CrushFTP zero-day exploited in attacks to gain admin access on servers

CrushFTP is warning that threat actors are actively exploiting a zero-day vulnerability tracked as CVE-2025-54309, which allows attackers to gain administrative access via the web interface on vulnera …

Published Date:
Jul 18, 2025 (2 hours, 28 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-54309

Source: Read More

Previous ArticleCVE-2025-52164 – Agorum Core Password Storage Vulnerability

Next Article Ivanti Zero-Days Exploited to Drop MDifyLoader and Launch In-Memory Cobalt Strike Attacks

CodeSOD: A Unique Way to Primary Key

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

I’m a wearables editor and here are the 7 Pixel Watch 4 rumors I’m most curious about

8 ways I quickly leveled up my Linux skills – and you can too

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

Execute Ping Commands and Get Back Structured Data in PHP

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

“I don’t think I changed his mind” — NVIDIA CEO comments on H20 AI GPU sales resuming in China following a meeting with President Trump

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

CrushFTP zero-day exploited in attacks to gain admin access on servers

CrushFTP zero-day exploited in attacks to gain admin access on servers

CVE-2025-44658 – Netgear RAX30 PHP-FPM Misconfigured Extension Bypass Vulnerability

CVE-2025-7393 – Drupal Mail Login Authentication Bypass

Bethesda teases Oblivion Remastered, with a full announcement for the legendary Elder Scrolls title coming this week

CVE-2025-46190 – SourceCodester Client Database Management System SQL Injection

NVIDIA became the first $4 trillion company — here’s how the tech giant beat Microsoft and Apple

CVE-2025-5404 – Chaitak-Gorai Blogbook GET Parameter Handler Denial of Service Vulnerability

Firefox 140 Brings Tab Unload, Custom Search & New ESR

Windows Task Scheduler Vulnerability Let Attackers Escalate Privileges

Microsoft Admits Windows 11 Firewall Bug Still Isn’t Fixed

Xbox Game Pass gets Blue Prince, South of Midnight, another Blizzard Entertainment game, and more

CrushFTP zero-day exploited in attacks to gain admin access on servers

CrushFTP zero-day exploited in attacks to gain admin access on servers

Related Posts