A newly identified security issue in Wing FTP Server has drawn attention after the U.S. Cybersecurity and Infrastructure Security Agency (CISA) confirmed its active exploitation and added it to its Known Exploited Vulnerabilities (KEV) catalog. The flaw, tracked as CVE-2025-47813 with a CVSS score of 4.3, is classified as an information disclosure vulnerability that can expose sensitive server details under certain conditions.
The vulnerability allows leakage of the application’s installation path due to improper handling of error messages. “Wing FTP Server contains a generation of error messages containing sensitive information vulnerability when using a long value in the UID cookie,” CISA said. The issue impacts all versions up to and including 7.4.3 and has been fixed in version 7.4.4, released in May after responsible disclosure by researcher Julien Ahrens.
Notably, version 7.4.4 also addresses another critical vulnerability, CVE-2025-47812, which carries a CVSS score of 10.0 and enables remote code execution. As of July 2025, this flaw has been actively exploited. Security researchers reported that attackers used it to download and execute malicious Lua files, perform reconnaissance and deploy remote monitoring and management tools on compromised systems.
According to findings shared alongside a proof-of-concept on GitHub, the “/loginok.html” endpoint fails to properly validate the “UID” session cookie. When the value exceeds the system’s maximum path length, it triggers an error revealing the full local server path. “Successful exploits can allow an authenticated attacker to get the local server path of the application, which can help in exploiting vulnerabilities like CVE-2025-47812,” the researcher added. While details of real-world attacks remain limited, federal agencies have been directed to apply fixes by 30 March 2026.
Also read: Viksit Workforce for a Viksit Bharat
Do Follow: The Mainstream LinkedIn | The Mainstream Facebook | The Mainstream Youtube | The Mainstream Twitter
About us:
The Mainstream is a premier platform delivering the latest updates and informed perspectives across the technology business and cyber landscape. Built on research-driven, thought leadership and original intellectual property, The Mainstream also curates summits & conferences that convene decision makers to explore how technology reshapes industries and leadership. With a growing presence in India and globally across the Middle East, Africa, ASEAN, the USA, the UK and Australia, The Mainstream carries a vision to bring the latest happenings and insights to 8.2 billion people and to place technology at the centre of conversation for leaders navigating the future.
