CVE-2025-47813: Wing FTP Server Information Disclosure Vulnerability

CISA has added CVE-2025-47813 to its Known Exploited Vulnerabilities catalog. Wing FTP Server contains a generation of error message containing sensitive information vulnerability when using a long value in the UID cookie. Affected Product: Wing FTP Server by Wing FTP Server. Required Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable. Due Date: 2026-03-30. This vulnerability poses a significant risk as it is being actively exploited by threat actors. Organizations using affected products should prioritize patching immediately to prevent potential compromise.