The United States Cybersecurity and Infrastructure Security Agency (CISA) has added a vulnerability in the popular Wing FTP Server platform to its Known Exploited Vulnerabilities Catalog overnight, citing “evidence of active exploitation” of the flaw.
CVE-2025-47813 was first published in July 2025, and although it is only a medium-severity vulnerability, it can lead to the exposure of the full local installation path of the application on older server versions.
“Wing FTP Server contains a generation of error message containing sensitive information vulnerability when using a long value in the UID cookie,” CISA said.
The vulnerability impacts versions 7.4.4 and earlier of Wing FTP Server, and the issue has been patched in later versions.
Two other vulnerabilities, CVE-2025-47812 (a remote code execution vulnerability) and CVE-2025-27889 (an information disclosure flaw), were patched at the same time.
RCE Security researcher Julien Ahrens said in June last year that all three vulnerabilities could be chained together for maximum impact.
“This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise,” CISA said.
David Hollingworth
David Hollingworth has been writing about technology for over 20 years, and has worked for a range of print and online titles in his career. He is enjoying getting to grips with cyber security, especially when it lets him talk about Lego.
