CVE-2025-47813
Published Jul 10, 2025
Last updated a month ago
AI description
CVE-2025-47813 is a local path disclosure vulnerability affecting Wing FTP Server versions prior to 7.4.4. This flaw, classified as CWE-209 (Generation of Error Message Containing Sensitive Information), allows an attacker to uncover the full local installation path of the application. The vulnerability is triggered by manipulating the `UID` cookie with an excessively long value when accessing the `loginok.html` functionality, which causes an error message to be generated that includes the sensitive path information. The exposure of the server's file system structure through this vulnerability could potentially be leveraged by attackers to aid in further attacks or to gain a deeper understanding of the target system's configuration. The issue was addressed in Wing FTP Server version 7.4.4, released on May 14, 2025.
- Description
- loginok.html in Wing FTP Server before 7.4.4 discloses the full local installation path of the application when using a long value in the UID cookie.
- Source
- cve@mitre.org
- NVD status
- Analyzed
- Products
- wing_ftp_server
CVSS 3.1
- Type
- Secondary
- Base score
- 4.3
- Impact score
- 1.4
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
- Severity
- MEDIUM
Data from CISA
- Vulnerability name
- Wing FTP Server Information Disclosure Vulnerability
- Exploit added on
- Mar 16, 2026
- Exploit action due
- Mar 30, 2026
- Required action
- Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- cve@mitre.org
- CWE-209
- Hype score
- Not currently trending
CISAが緊急警告!Wing FTPの深刻な情報漏洩脆弱性CVE-2025-47813が活発に悪用中 https://t.co/bFltAkNR1t https://t.co/QZeUvS7Nh9
@gadgetota123
15 Apr 2026
70 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
📡Wing FTP Vulnerability → RCE Attack Chain Risk CVE-2025-47813 is actively exploited and added to CISA KEV. On its own, it exposes server paths, but the real risk appears when chained. Combined with CVE-2025-47812 (RCE): Exposure → Path Leak → RCE → Sy
@CriminalIP_US
25 Mar 2026
218 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
📡Wing FTP 정보 유출 취약점 (CVE-2025-47813) 최근 Wing FTP Server에서 발견된 정보 유출 취약점이 실제 공격에 악용되며 KEV에 등록되었습니다. 해당 취약점은 긴 UID 쿠키 값을 처리하는 과정에서 서버의 로컬 설치 경
@CriminalIP_KR
25 Mar 2026
167 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
📁Wing FTP情報漏えい脆弱性(CVE-2025-47813) 最近、Wing FTP Serverで発見された情報漏えい脆弱性が実際の攻撃に悪用され、KEVに追加されました。この脆弱性は、長いUIDクッキー値の処理過程でサーバーのロー
@CriminalIP_JP
25 Mar 2026
297 Impressions
0 Retweets
0 Likes
1 Bookmark
0 Replies
0 Quotes
Wing FTP CVE-2025-47813 actively exploited since July 2025. Attackers leverage it to download malicious Lua files & install RMM. Patch 7.4.4 immediately. #threatintel #mssp #threatintel #mssp
@bettermssp
23 Mar 2026
128 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
#CISA flags Wing FTP Server flaw #CVE-2025-47813, actively exploited & chained for RCE. Patch immediately. #threatintel #mssp #cybersecurity
@bettermssp
23 Mar 2026
126 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Alerte CISA : Exploitation active de CVE-2025-47813 sur Wing FTP Server – Mise à jour urgente avant le 30 mars !
@NicolasCoolman
20 Mar 2026
71 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
#CISA on Monday added a medium-severity #security flaw (CVE-2025-47813) impacting Wing FTP to its Known Exploited Vulnerabilities catalogue. #CyberSecurity #InfoSec https://t.co/gIsM9sZzMc https://t.co/hV4tSQk1hi
@twelvesec
20 Mar 2026
132 Impressions
0 Retweets
0 Likes
1 Bookmark
0 Replies
0 Quotes
CISA warns of active exploitation of Wing FTP vulnerability (CVE-2025-47813) leaking server paths. Update to version 7.4.4 by March 30, 2026. Link: https://t.co/haLJwpBojU #Security #CISA #WingFTP #Vulnerability #Exploit #Patch #Server #Update #Cyber #Threat #Attack #Risk #Breach
@dailytechonx
18 Mar 2026
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CISA alerts on active exploitation of Wing FTP Server vulnerability CVE-2025-47813. Organizations must patch immediately to prevent data breaches. Link: https://t.co/GfP9kpqUpp #Security #Vulnerability #CISA #Patch #Data #Breach #Server #Exploit #Technology #Safety #Protection ht
@dailytechonx
18 Mar 2026
3 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🟠 Wing FTP Server, Path Disclosure, #CVE-2025-47813 (Medium) https://t.co/cvk8Disipj
@dailycve
18 Mar 2026
31 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️ CISA bestätigt aktive Ausnutzung kritischer Schwachstelle in Wing FTP Server (CVE-2025-47813). Die Lücke als Information Disclosure wurde am 16. März in den Known Exploited Vulnerabilities (KEV) Katalog aufgenommen. https://t.co/FoZFtHAleQ
@nin_tech_x
18 Mar 2026
79 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Wing FTP Server flaw added to CISA Known Exploited Vulnerability (KEV) Catalog. Info, incl. fix info, at SecAlerts: CVE-2025-47813, CVSS 4.3 - https://t.co/GCOdTRfsPY #ciso #cio #cto #vulnerabilities #cybersecurity #msp #mssp #secalerts #CV202547813 https://t.co/QWBEfsBWX9
@SecAlertsCo
18 Mar 2026
132 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CISA adds Wing FTP CVE-2025-47813 to KEV catalog after detecting active exploitation. Medium-severity flaw leaks server installation paths, creating reconnaissance opportunities for attackers. #DFIR_Radar https://t.co/J1WmRfscOf
@DFIR_Radar
18 Mar 2026
43 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
👁️Worldプロジェクト、エージェントコマースの人間関与認証ツールをリリース ⚠️米CISA、昨年公表のWing FTPの脆弱性が悪用されたと警告(CVE-2025-47813) 〜サイバーアラート3月18日〜 https://t.co/GoKMKav67T
@MachinaRecord
18 Mar 2026
203 Impressions
0 Retweets
0 Likes
1 Bookmark
0 Replies
0 Quotes
CISA adds Wing FTP Server CVE-2025-47813 to KEV catalog after active exploitation. Path disclosure flaw chains with RCE bug patched in May 2025 - federal agencies have 2 weeks to remediate. #DFIR_Radar https://t.co/jGadPfb4Cu
@DFIR_Radar
18 Mar 2026
11 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
⚠️ CISA flags CVE-2025-47813 in Wing FTP as actively exploited. It leaks server paths via cookie errors—low severity, high value. Attackers can pair it with a known RCE flaw already used to deploy malware. 🔗 How it enables real attack chains → https://t.co/DBPzmz3MIB
@YourAnonYan
18 Mar 2026
90 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
TRC analysis shows attackers exploited CVE-2025-47813 in Wing FTP Server via null byte injection to execute arbitrary code with elevated privileges. The compromise enabled lateral movement across network infrastructure. Runtime segmentation helps limit blast radius when
@aviatrixtrc
17 Mar 2026
105 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Wing FTP Serverの情報漏洩脆弱性CVE-2025-47813がCISA KEVに追加されたとの記事です。RCEとの連鎖が懸念され、中程度CVSSでもKEV追加される点は実務上の留意点です。 https://t.co/JZj1Lbc9mw #脆弱性管理
@dejital_secure
17 Mar 2026
118 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Alert: CISA warns of active exploitation of Wing FTP vulnerability CVE-2025-47813. It exposes server paths—critical for remote code exploits. Agencies must patch by March 2026! 👉🏻 https://t.co/xSaInxa2Kg #Cybersecurity #CISA #WingFTP
@sqmagazine_news
17 Mar 2026
112 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Warning: A 2025 vulnerability in Wing FTP Server is now actively exploited. CVE-2025-47813 CVSS: 4.3. This vulnerability might be chained in #RCE attacks. More info: https://t.co/klcnn3ROOH #Patch #Patch #Patch
@CCBalert
17 Mar 2026
224 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Yesterday CISA added CVE-2025-47813 to the Known Exploited Vulnerabilities catalog -- an information disclosure flaw in Wing FTP Server scored at just 4.3. Medium severity. Easy to deprioritize in a backlog of thousands.
@CEHCFIMR
17 Mar 2026
0 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CISA added CVE-2025-47813 (Wing FTP) to KEV today. Active exploitation — path disclosure flaw leaks server installation paths, giving attackers recon data for follow-on access. Patch deadline: March 30. https://t.co/ValY3hMvXL
@CybrPulse
17 Mar 2026
10 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CISAは、Wing FTP Serverの既知脆弱性 CVE-2025-47813 をKEVに追加し、実際に悪用が確認されたと警告した。重要なのは、深刻度は情報漏えい寄りでも、攻撃者にサーバ内部のパス情報を与え、後続攻撃の足掛かりにな
@01ra66it
17 Mar 2026
269 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Mar 17, 2026 🚨 CISA has added CVE-2025-47813, a medium-severity Wing FTP vulnerability, to its KEV catalog due to active exploitation. This flaw leaks server paths, posing a risk to sensitive data. https://t.co/Esm1RkpGNy
@kernyx64
17 Mar 2026
95 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔎 Trending CVE CVE-2025-47813 im Wing FTP Server (<7.4.4) ermöglicht das Offenlegen sensibler Informationen über manipuliertes UID-Cookie. Bereits im CISA KEV-Katalog gelistet. Kombination mit weiteren Schwachstellen möglich. Details: https://t.co/nFzQ783C2t https://t
@VulnDex
17 Mar 2026
82 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
🎤 RadioCSIRT Ep.600 – Mardi 17 mars 2026 Quatre sujets. Veille cyber quotidienne. 🔴 Wing FTP Server – CVE-2025-47813 ajoutée au catalogue KEV de la CISA. Exploitation active confirmée. Information Disclosure exploitable en chaîne avec CVE-2025-47812, une RCE criti
@marcfredericgo
17 Mar 2026
116 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CISA waarschuwt voor actief misbruik van Wing FTP Server-kwetsbaarheden. CVE-2025-47813 en CVE-2025-47812 zijn gepatcht in versie 7.4.4. https://t.co/Cns7divgRx #Security #CISA #CVE202547812 #CVE202547813 #FTP
@Techzinenlbe
17 Mar 2026
142 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CISA warns of active exploitation of Wing FTP Server vulnerabilities. CVE-2025-47813 and CVE-2025-47812 have been patched in version 7.4.4. https://t.co/XDGbOCIrwx #Security #CISA #CVE202547812 #CVE202547813 #FTP - Follow for more
@techzine
17 Mar 2026
75 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨Wing FTPに脆弱性!🚨 CISAがWing FTPの脆弱性CVE-2025-47813をKEVに追加!情報漏洩の危険あり!7.4.4未満のバージョンは要注意!アップデートは済んだ?早急な対策を! #セキュリティ #脆弱性 https://t.co/VDdDIQ8mqN
@motch_dev
17 Mar 2026
107 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Top 5 Trending CVEs: 1 - CVE-2010-5139 2 - CVE-2026-24291 3 - CVE-2019-17571 4 - CVE-2025-47813 5 - CVE-2026-25172 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W
@CVEShield
17 Mar 2026
200 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
1/ CISA just put Wing FTP on KEV for CVE-2025-47813. Yes, a “medium” bug. Yes, it’s being exploited. Security teams keep learning the same lesson: attackers do not care about your CVSS religion. https://t.co/BuO10iEjx1
@projectzerosum
17 Mar 2026
76 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
CISA added CVE-2025-47813 to the Known Exploited Vulnerabilities catalog after active exploitation in Wing FTP. This info leak exposes server paths via an overlong UID cookie. Patch available in Wing FTP 7.4.4. #InfoLeak #WingFTP #USA https://t.co/1q84pcA51u
@TweetThreatNews
17 Mar 2026
213 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
📌 أعلنت وكالة الأمن السيبراني الأمريكية (CISA) أن ثغرة في Wing FTP تُستغل بنشاط وأدرجتها في قائمة الثغرات المعروفة المستغلة (KEV). الثغرة ذات خطورة متوسطة (CVSS 4.3)
@Cybercachear
17 Mar 2026
102 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨 BREAKING: CISA warns of active exploitation of Wing FTP vulnerability, CVE-2025-47813, leaking server paths! Medium-severity flaw now in KEV catalog. Admins, patch immediately to safeguard your systems! Stay alert and protect your data. #NerdieNews #CyberSecurity #BreakingNe
@NewsNerdie
17 Mar 2026
100 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨 CISA just added CVE-2025-47813 to the KEV catalog — Wing FTP is leaking server paths via an oversized UID cookie 🍪 Pair that with CVE-2025-47812 (CVSS 10.0 RCE) and you've got a spicy exploit chain 🔥 Patch to v7.4.4. Now. Yesterday. 🛠️ #InfoSec #CyberSecurity #W
@archie_sham
17 Mar 2026
101 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️ CISA flags CVE-2025-47813 in Wing FTP as actively exploited. It leaks server paths via cookie errors—low severity, high value. Attackers can pair it with a known RCE flaw already used to deploy malware. 🔗 How it enables real attack chains → https://t.co/Rc3hBfsIPB
@TheHackersNews
17 Mar 2026
8816 Impressions
22 Retweets
60 Likes
15 Bookmarks
1 Reply
1 Quote
🚨 Today CVE: CVE-2025-47813 That timeline looks pretty familiar.
@EdgeDetectOps
17 Mar 2026
2 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
CISA adds Wing FTP Server bug CVE-2025-47813 to Known Exploited Vulnerabilities catalog as active attacks target info disclosure flaw, orders US agencies to patch within 2 weeks. #CISA https://t.co/FHTtdBubjf
@threatcluster
16 Mar 2026
129 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CISAが既知の悪用された脆弱性を1件カタログに追加 CISA Adds One Known Exploited Vulnerability to Catalog #CISA (Mar 16) CVE-2025-47813 Wing FTPサーバーの情報漏洩の脆弱性 https://t.co/3N0mo7nczg
@foxbook
16 Mar 2026
329 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
CISA adds CVE-2025-47813 Wing FTP Server vulnerability to Known Exploited Vulnerabilities Catalog based on active exploitation evidence. Organizations urged to prioritize immediate remediation. #Cybersecurity #InfoSec https://t.co/HYBZBMNUUA
@battista212
16 Mar 2026
14 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
CISA adds CVE-2025-47813 Wing FTP Server vulnerability to Known Exploited Vulnerabilities Catalog based on active exploitation evidence. Organizations urged to prioritize immediate remediation. #Cybersecurity #InfoSec https://t.co/u86ksekOyt
@battista212
16 Mar 2026
13 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
CISA reports active exploitation of CVE-2025-47813 in Wing FTP Server, enabling info disclosure and remote code execution when combined with a critical RCE bug. Patch v7.4.4 released in May 2025. #WingFTP #RemoteCodeExecution #USA https://t.co/w8SJ6a3A5d
@TweetThreatNews
16 Mar 2026
69 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE Alert: CVE-2025-47813 - wftpserver - Wing FTP Server - https://t.co/HoxcfrJ2Jc #OSINT #ThreatIntel #CyberSecurity #cve-2025-47813 #wftpserver #wing-ftp-server
@RedPacketSec
16 Mar 2026
171 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CISA KEV: CVE-2025-47813 - Wing FTP Server Wing FTP Server https://t.co/BCrNQSWjd0 ; https://t.co/cxKdQaZh7B #CVE202547813 #Vulnerability
@ox0ffff
16 Mar 2026
119 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Latest Known Exploited Vulnerabilities (#KEV) : #CVE-2025-47813 Wing FTP Server Information Disclosure Vulnerability https://t.co/qBi3B6btu0
@ScyScan
16 Mar 2026
113 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CISA adds a Wing FTP Server flaw (CVE-2025-47813) to its KEV catalog. The actively exploited cookie vulnerability exposes internal server paths. Update now. #WingFTPServer #CVE #CISAKEV #CyberSecurity #InfoSec #ThreatIntel #Vulnerability #PathDisclosure https://t.co/g9WytaHCg4 ht
@the_yellow_fall
16 Mar 2026
40 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CISA Flags Actively Exploited Wing FTP Server Flaw That May Aid RCE Chains CISA added CVE-2025-47813 to its Known Exploited Vulnerabilities catalog after warning that the Wing FTP Server information disclosure bug is being actively abused and may be chained with a previously
@ThreatSynop
16 Mar 2026
56 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🛡️ CVE-2025-47813: Vulnerabilidad de Divulgación de Información en Wing FTP Server Análisis técnico de la CVE-2025-47813 en Wing FTP Server, una falla de divulgación de información con puntuación CVSS 4.3. Impacto, mitigaciones y recomendacion https://t.co/RFLbGXLFCj
@CiberPlanetaOrg
16 Mar 2026
117 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🛡️ Alerta de Seguridad: Wing FTP Server Information Disclosure Vulnerability (CVE-2025-47813) Wing FTP Server presenta una vulnerabilidad de divulgación de información (CWE-209) en mensajes de error al procesar valores largos en la cookie UID. Severidad media (CVSS 4.3). I
@CiberPlanetaOrg
16 Mar 2026
125 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:wftpserver:wing_ftp_server:*:*:*:*:*:*:*:*",
"matchCriteriaId": "34AF9E83-291C-40B0-AE69-34C9B59A5D03",
"versionEndExcluding": "7.4.4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
]