InfoWorld

Java and Python FTP attacks can punch holes through firewalls

The Java and Python runtimes fail to properly validate FTP URLs, which can potentially allow attackers to punch holes through firewalls to access local networks. On Saturday, security researcher ...
GitHub

Bu proje, Python ve pyftpdlib kütüphanesi kullanılarak basit bir FTP sunucusu oluşturur. Kullanıcı, tanımlanan port üzerinden FTP bağlantısı kurarak dosya ...

Belirlenen bir klasöre FTP erişimi sağlar. Kullanıcı oluşturma ve yetkilendirme. Dosya yükleme, indirme, silme, yeniden adlandırma işlemleri. FTP dizininde dosya listeleme ve klasör oluşturma. Basit ...
Threat Post

Java, Python FTP Injection Attacks Bypass Firewalls

Newly disclosed FTP injection vulnerabilities in Java and Python that are fueled by rather common XML External Entity (XXE) flaws allow for firewall bypasses. Newly disclosed FTP injection ...
GitHub

AnonFTP is a python script that gets an input of a given hosts names and checks if the ftp server in the given host names can be logged in with "anonymous" credentials or not

When it comes to File Transfer Protocol (FTP), anonymous credentials refer to a type of login credentials that allow users to access an FTP server without providing any personal identification ...
adtmag.com

Unpatched Java, Python Flaws Allow FTP Protocol Injection

Old vulnerabilities in both Java and Python that allow attackers to bypass firewalls and access local networks by injecting malicious commands inside FTP URLs resurfaced this week when two security ...