SecurityWeek

Fortra Patches Critical Vulnerability in FileCatalyst Workflow

Cybersecurity solutions provider Fortra this week announced patches for two vulnerabilities in FileCatalyst Workflow, including a critical-severity flaw involving leaked credentials. The critical ...
Bleeping Computer

Fortra fixes critical FileCatalyst Workflow hardcoded password issue

Fortra is warning of a critical hardcoded password flaw in FileCatalyst Workflow that could allow attackers unauthorized access to an internal database to steal data and gain administrator privileges.
The Hacker News

Fortra Issues Patch for High-Risk FileCatalyst Workflow Security Vulnerability

Fortra has addressed a critical security flaw impacting FileCatalyst Workflow that could be abused by a remote attacker to gain administrative access. The vulnerability, tracked as CVE-2024-6633, ...
GitHub

fortra_filecatalyst_workflow_sqli.rb

This module exploits a SQL injection vulnerability in Fortra FileCatalyst Workflow <= v5.1.6 Build 135, by adding a new administrative user to the web interface of the application.
SecurityWeek

Fortra Patches Critical SQL Injection in FileCatalyst Workflow

Fortra this week announced patches for a critical-severity SQL injection vulnerability in FileCatalyst Workflow that could allow attackers to create administrative user accounts. Tracked as ...
thecyberexpress

Critical SQL Injection Vulnerability Exposes Fortra FileCatalyst Workflow

A critical security flaw has been reported in Fortra FileCatalyst Workflow, a widely used platform designed for efficient file exchange and collaboration within private cloud environments. This ...
Bleeping Computer

Exploit for critical Fortra FileCatalyst Workflow SQLi flaw released

The Fortra FileCatalyst Workflow is vulnerable to an SQL injection vulnerability that could allow remote unauthenticated attackers to create rogue admin users and manipulate data on the application ...
GitHub

A SQL Injection vulnerability in Fortra FileCatalyst...

This score calculates overall vulnerability severity from 0 to 10 and is based on the Common Vulnerability Scoring System (CVSS). Attack vector: More severe the more the remote (logically and ...
Dark Reading

Fortra Releases Update on Critical Severity RCE Flaw

Fortra this week released an update for a critical vulnerability that was initially discovered in August 2023. Tracked as CVE-2024-25153 with a critical severity CVSS score of 9.8, the vulnerability ...