@securityrss.bsky.social on Bluesky

JavaScript RequiredThis is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is. Learn more about Bluesky at bsky.social and atproto.com.

Post

securityrss.ai

securityrss.bsky.social

did:plc:geidqukzen75knciqkq77vgq

CrushFTP has reported active exploitation of a zero-day vulnerability (CVE-2025-54309) that allows attackers to gain admin access via the web interface on vulnerable servers. Detected on July 18, the flaw affects versions prior to CrushFTP v10.8.5 and v11.3.4_23. https://www.bleepingcomputer.com/news/security/crushftp-zero-day-exploited-in-attacks-to-gain-admin-access-on-servers/

2025-07-20T17:34:40.443Z