CrushFTP Warns Users to Patch Exploited Zero-Day “Immediately”
As the company also explains in a public security advisory published on Friday, this zero-day bug enables unauthenticated attackers to escape the user’s virtual file system (VFS) and download system files.