{"id":67411,"date":"2025-08-05T03:32:23","date_gmt":"2025-08-05T00:02:23","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2025-46093-liquidfiles-ftp-setuid-setgid-remote-command-execution\/"},"modified":"2025-08-05T03:32:23","modified_gmt":"2025-08-05T00:02:23","slug":"cve-2025-46093-liquidfiles-ftp-setuid-setgid-remote-command-execution","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2025-46093-liquidfiles-ftp-setuid-setgid-remote-command-execution\/","title":{"rendered":"CVE-2025-46093 &#8211; LiquidFiles FTP SETUID Setgid Remote Command Execution"},"content":{"rendered":"<p><strong>CVE ID : <\/strong>CVE-2025-46093<br \/>\n<br \/>\n<strong>Published : <\/strong> Aug. 4, 2025, 11:15 p.m. | 27\u00a0minutes ago<br \/>\n<br \/>\n<strong>Description : <\/strong>LiquidFiles before 4.1.2 supports FTP SITE CHMOD for mode 6777 (setuid and setgid), which allows FTPDrop users to execute arbitrary code as root by leveraging the Actionscript feature and the sudoers configuration.<br \/>\n<br \/>\n<strong>Severity:<\/strong> 9.9 | CRITICAL<br \/>\n<br \/>\nVisit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID : CVE-2025-46093 Published : Aug. 4, 2025, 11:15 p.m. | 27\u00a0minutes ago Description : LiquidFiles before 4.1.2 supports FTP SITE CHMOD for mode 6777 (setuid and setgid), which allows FTPDrop users to execute arbitrary code as root by leveraging the Actionscript feature and the sudoers configuration. Severity: 9.9 | CRITICAL Visit the link &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-67411","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/67411","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=67411"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/67411\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=67411"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=67411"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=67411"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}