<ul data-eligibleForWebStory="false"><li>Hackers are actively exploiting a critical flaw (CVE-2025-47812) in Wing FTP Server, allowing remote code execution with root/system privileges.</li><li>The vulnerability stems from improper handling of null bytes, enabling injection of malicious Lua code into session files.</li><li>Even anonymous FTP accounts can be used to trigger code execution with administrative rights on both Linux and Windows systems.</li><li>Researchers confirmed active exploitation of the flaw shortly after technical details were made public on June 30, urging users to update to server version 7.4.4 or later.</li></ul>

Wing FTP Server flaw actively exploited shortly after technical details were made public

Discover more