CVE-2020-11705

An issue was discovered in ProVide (formerly zFTPServer) through 13.1. /ajax/ImportCertificate allows an attacker to load an arbitrary certificate in .pfx format or overwrite arbitrary files via the fileName parameter. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt