CVE Tracker

CVE ID	Severity	EPSS	Vendor	Description	Date	Status
CVE-2021-27101	High	0.8%	AccellionFTA	Accellion FTA contains a SQL injection vulnerability exploited via a crafted host header in a request to document_root.html.	Nov 3, 2021	KEV
CVE-2021-27103	High	2.9%	AccellionFTA	Accellion FTA contains a server-side request forgery (SSRF) vulnerability exploited via a crafted POST request to wmProgressstat.html.	Nov 3, 2021	KEV
CVE-2021-27104	High	6.0%	AccellionFTA	Accellion FTA contains an OS command injection vulnerability exploited via a crafted POST request to various admin endpoints.	Nov 3, 2021	KEV
CVE-2021-27102	High	0.3%	AccellionFTA	Accellion FTA contains an OS command injection vulnerability exploited via a local web service call.	Nov 3, 2021	KEV

Accellion FTA contains a SQL injection vulnerability exploited via a crafted host header in a request to document_root.html.

Accellion FTA contains a server-side request forgery (SSRF) vulnerability exploited via a crafted POST request to wmProgressstat.html.

Accellion FTA contains an OS command injection vulnerability exploited via a crafted POST request to various admin endpoints.

Accellion FTA contains an OS command injection vulnerability exploited via a local web service call.