CISA warns that a Wing FTP vulnerability leading to the disclosure of the full local installation path has been exploited in attacks.

CISA warned U.S. government agencies to secure their Wing FTP Server instances against an actively exploited vulnerability that may be chained in remote code execution attacks.

CISA adds Wing FTP CVE-2025-47813 to KEV after active exploitation, exposing server paths and aiding attacks; patch by March 30, 2026.

With eight years of experience as a financial journalist and editor and a degree in economics, Elizabeth Aldrich has worked on thousands of articles within the realm of banking, economics, credit ...