![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhmdz9o-KZOsZDEl5SNHbl-I7LZX1VhYf4GDRf32RxTxBnfuzCgDSFVS_Gz56XYrBzm2BZzSAho1CBFujQ-IXDl1Hm2g_Rj7J-bkJTveAJn3k3x5o-jn24pFt2DbS5901MTQE1-e04GOM1KUhFW2JgmQuE8FzRhyKxl8zcSAdJCX_TdBhu9VRxWURsTgO9o/s1600/ftp.png)
Users of the CrushFTP enterprise file transfer software are being urged to update to the latest version following the discovery of a security flaw that has come under targeted exploitation in the wild.
“CrushFTP v11 versions below 11.1 have a vulnerability where users can escape their VFS and download system files,” CrushFTP said in an advisory released Friday.
Source:: The Hackers News