`basic-ftp`

Ecosystem:
npm

Package URL:
pkg:npm/basic-ftp

Total PRs:
1,849 Dependabot PRs

Latest PR:
about 10 hours ago

Unique Repositories:
1,369 repositories

Unique Repos (30 days):
898 repositories

Security Advisories

basic-ftp vulnerable to denial of service via unbounded memory consumption in Client.list()

GHSA-rp42-5vxx-qpwr CVE-2026-41324 HIGH published 12 days ago • updated about 5 hours ago

### Summary `basic-ftp@5.2.2` is vulnerable to denial of service through unbounded memory growth while processing directory listings from a remote ...

Basic FTP has Path Traversal Vulnerability in its downloadToDir() method

GHSA-5rq4-664w-9x2c CVE-2026-27699 CRITICAL published 2 months ago • updated 7 days ago

The `basic-ftp` library contains a path traversal vulnerability in the `downloadToDir()` method. A malicious FTP server can send directory listings...

basic-ftp: Incomplete CRLF Injection Protection Allows Arbitrary FTP Command Execution via Credentials and MKD Commands

GHSA-6v7q-wjvx-w8wg HIGH published 18 days ago • updated 18 days ago

## Summary basic-ftp's CRLF injection protection (added in commit 2ecc8e2 for GHSA-chqc-8p9q-pq6q) is incomplete. Two code paths bypass the `prote...

5.0.5 → 5.3.1 Minor PR

Closed about 10 hours ago 2 comments

Bump basic-ftp from 5.2.1 to 5.3.1

DEFRA/forms-submission-api #507

5.2.1 → 5.3.1 Minor PR

Open about 22 hours ago 1 comment

Build(deps): Bump basic-ftp from 5.2.0 to 5.3.0 in /development/fetchLicenses

kakashijk/androidx #1

5.2.0 → 5.3.0 Minor PR

Closed 4 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 7 directories with 12 updates

jeremydh911/CRM #64

5.2.0 → 5.3.0 Minor PR

Open 4 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 7 directories with 11 updates

jeremydh911/CRM #59

5.2.0 → 5.3.0 Minor PR

Closed 4 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 1 directory with 6 updates

mdjahid11978-design/lossless-claw #1

5.1.0 → 5.3.0 Minor PR

Open 4 days ago 2 comments

build(deps): bump the npm_and_yarn group across 2 directories with 9 updates

Stirling-Tools/Stirling-PDF #6212

5.2.0 → 5.3.0 Minor PR

Open 5 days ago 4 comments

chore: Bump basic-ftp from 5.2.0 to 5.3.0

sudodoki/copy-to-clipboard #156

5.2.0 → 5.3.0 Minor PR

Open 5 days ago 1 comment

Bump basic-ftp from 5.0.5 to 5.3.0

sirkitree/sirkitree.github.com #30

5.0.5 → 5.3.0 Minor PR

Closed 5 days ago 2 comments

build(deps): bump the npm_and_yarn group across 1 directory with 3 updates

crisesarmiento/vision-total-ar #19

5.2.0 → 5.3.0 Minor PR

Open 5 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 3 directories with 11 updates

AKJUS/style-dictionary #59

5.2.0 → 5.3.0 Minor PR

Open 5 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 16 directories with 11 updates

hashim21223445/cypress #178

5.0.3 → 5.3.0 Minor PR

Closed 6 days ago 3 comments

build(deps): bump the npm_and_yarn group across 4 directories with 19 updates

ianlintner/Example-React-AI-Chat-App #195

5.0.5 → 5.3.0 Minor PR

Open 8 days ago 2 comments

chore(deps): bump basic-ftp from 5.2.2 to 5.3.0 in /test/frontend-integration-test

kubeflow/pipelines #13292

5.2.2 → 5.3.0 Minor PR

Open 8 days ago 4 comments

build(deps): bump the npm_and_yarn group across 1 directory with 10 updates

ianlintner/Example-React-AI-Chat-App #189

5.0.5 → 5.3.0 Minor PR

Open 8 days ago 2 comments

build(deps): bump the npm_and_yarn group across 2 directories with 10 updates

google/perfetto #5518

5.2.0 → 5.3.0 Minor PR

Open 8 days ago 1 comment

Bump the npm-dependencies group with 18 updates

Arelle/ixbrl-viewer #1041

5.2.2 → 5.3.0 Minor PR

Closed 9 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 3 directories with 10 updates

romanchaa997/Audityzer #193

5.0.5 → 5.3.0 Minor PR

Open 9 days ago 4 comments

Bump the server-npm-security group across 1 directory with 5 updates

OWASP/threat-dragon #1583

5.1.0 → 5.3.0 Minor PR

Open 10 days ago 1 comment

chore(deps): Bump the npm_and_yarn group across 1 directory with 9 updates

shreybansal365/StudentSphere #1

5.2.0 → 5.3.0 Minor PR

Open 10 days ago 1 comment

build(deps): bump basic-ftp from 5.2.0 to 5.3.0

renleihaokun/Mizuki-blog #25

5.2.0 → 5.3.0 Minor PR

Closed 10 days ago 2 comments

Bump the npm_and_yarn group across 1 directory with 3 updates

Nick2bad4u/eslint-plugin-write-good-comments-2 #7

5.2.0 → 5.3.0 Minor PR

Open 10 days ago 3 comments

Bump basic-ftp from 5.2.0 to 5.3.0 in /nodejs-frontend

SeJonJ/ChatForYou #117

5.2.0 → 5.3.0 Minor PR

Open 11 days ago 2 comments

chore(deps): bump the npm_and_yarn group across 1 directory with 8 updates

giovannibaratta/approvio-api #25

5.0.5 → 5.3.0 Minor PR

Closed 11 days ago 2 comments

chore(deps): bump the npm-minor-patch group across 1 directory with 142 updates

QQXIAOZHOU/VoiceHub-4805e #5

5.2.0 → 5.3.0 Minor PR

Closed 11 days ago 3 comments

build(deps-dev): bump basic-ftp from 5.2.0 to 5.3.0 in /configs

bijux/bijux-pollenomics #25

5.2.0 → 5.3.0 Minor PR

Open 11 days ago 1 comment

build(deps): bump the npm_and_yarn group across 16 directories with 17 updates

hashim21223445/angular #292

5.0.5 → 5.3.0 Minor PR

Open 11 days ago 3 comments

Bump the npm_and_yarn group across 36 directories with 15 updates

leeeeeeeeujin-ctrl/starbase #126

5.0.5 → 5.3.0 Minor PR

Open 11 days ago 1 comment

chore(deps): bump the everything-else group across 1 directory with 67 updates

elenaorfe/elenaorfe-website #223

5.2.0 → 5.3.0 Minor PR

Closed 12 days ago 2 comments

chore(deps): bump the npm_and_yarn group across 46 directories with 6 updates

pkurri/crucible #52

5.2.0 → 5.3.0 Minor PR

Closed 12 days ago 2 comments

Bump the npm_and_yarn group across 2 directories with 2 updates

ultramagnus23/CollegeOS #77

5.2.2 → 5.3.0 Minor PR

Open 12 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 6 directories with 25 updates

GlacierEQ/cline #6

5.0.5 → 5.3.0 Minor PR

Open 12 days ago 2 comments

chore(deps): bump the npm_and_yarn group across 7 directories with 19 updates

LoveDoLove-Forked-Projects/cline #14

5.2.0 → 5.3.0 Minor PR

Closed 12 days ago 1 comment

chore(deps): bump the npm_and_yarn group across 5 directories with 13 updates

cline/cline #10298

5.1.0 → 5.3.0 Minor PR

Open 12 days ago 3 comments

Bump the npm_and_yarn group across 7 directories with 5 updates

whitphx/stlite #1996

5.2.0 → 5.3.0 Minor PR

Open 12 days ago 2 comments

Bump the npm_and_yarn group across 3 directories with 2 updates

Fxandres30/SAAS-PRO #2

5.2.2 → 5.3.0 Minor PR

Open 12 days ago 1 comment

Bump basic-ftp from 5.2.2 to 5.3.0

double-great/accessibility-scan-action #125

5.2.2 → 5.3.0 Minor PR

Open 12 days ago 1 comment

Bump basic-ftp from 5.2.2 to 5.3.0 in the npm_and_yarn group across 1 directory

cityssm/sunrise-cms #146

5.2.2 → 5.3.0 Minor PR

Open 12 days ago 3 comments

Bump basic-ftp from 5.2.2 to 5.3.0

aramb-dev/arabic-vocab-api #13

5.2.2 → 5.3.0 Minor PR

Open 12 days ago 2 comments

chore(deps): bump basic-ftp from 5.2.2 to 5.3.0 in /packages/pieces/core/sftp

activepieces/activepieces #12657

5.2.2 → 5.3.0 Minor PR

Open 12 days ago 1 comment

Bump basic-ftp from 5.2.2 to 5.3.0 in /Frontend

XVX-016/F1-PREDICT #51

5.2.2 → 5.3.0 Minor PR

Open 12 days ago 1 comment

chore(deps)(deps): bump basic-ftp from 5.2.0 to 5.3.0 in /digitaltableteur-blog

PetriLahdelma/digitaltableteur #537

5.2.0 → 5.3.0 Minor PR

Open 12 days ago 3 comments

chore(deps): bump basic-ftp from 5.2.2 to 5.3.0 in the npm_and_yarn group across 1 directory

aws/aws-cdk #37622

5.2.2 → 5.3.0 Minor PR

Closed 12 days ago 3 comments

chore(deps): bump basic-ftp from 5.2.2 to 5.3.0

Jimimaku/backstage #5978

5.2.2 → 5.3.0 Minor PR

Open 12 days ago 1 comment

Bump basic-ftp from 5.2.2 to 5.3.0

alextecplayz/alextecplayz.github.io #44

5.2.2 → 5.3.0 Minor PR

Closed 12 days ago 1 comment

build(deps): bump the npm_and_yarn group across 47 directories with 9 updates

hyperledger-cacti/cacti #4258

5.1.0 → 5.3.0 Minor PR

Closed 12 days ago 1 comment

build(deps): bump basic-ftp from 5.2.2 to 5.3.0

cipher-fox/puppeteer-extra-plugin-force-custom-language #23

5.2.2 → 5.3.0 Minor PR

Open 12 days ago 1 comment

Bump basic-ftp from 5.2.2 to 5.3.0 in the npm_and_yarn group across 1 directory

graphql-hive/graphql-gateways-benchmark #1028

5.2.2 → 5.3.0 Minor PR

Open 12 days ago 2 comments

build(deps): bump basic-ftp from 5.2.0 to 5.3.0

ODGodinho/ODGMono #6

5.2.0 → 5.3.0 Minor PR

Open 12 days ago 1 comment

Bump basic-ftp from 5.2.2 to 5.3.0 in /with-puppeteer in the npm_and_yarn group across 1 directory

todd2982/alpine-chrome #17

5.2.2 → 5.3.0 Minor PR

Open 12 days ago 2 comments

Package Details

Name:	`basic-ftp`
Ecosystem:	npm
PURL Type:	npm
Package URL:	`pkg:npm/basic-ftp`
JSON API:	View JSON

Security Advisories

4

Active advisories

CRITICAL 1

HIGH 3

View All npm Advisories

Package Information

Description:

FTP client for Node.js, supports FTPS over TLS, IPv6, Async/Await, and Typescript.

Repository:	https://github.com/patrickjuchli/basic-ftp
Homepage:	https://github.com/patrickjuchli/basic-ftp#readme
Latest Release:	`5.1.0` 4 months ago
Dependent Repos:	5,188
Dependent Packages:	271
Downloads:	50,604,527
Ranking:	Top 0.3186% by dependent repos Top 0.0583% by downloads Top 0.1842% by dependent pkgs

PR Status

Open 728 (39.4%)

Merged 0 (0.0%)

Closed 1,121 (60.6%)

PR Types

Major 2 (0.1%)

Patch 650 (35.2%)

Minor 1,197 (64.7%)

basic-ftp

Security Advisories

basic-ftp vulnerable to denial of service via unbounded memory consumption in Client.list()

Basic FTP has Path Traversal Vulnerability in its downloadToDir() method

basic-ftp: Incomplete CRLF Injection Protection Allows Arbitrary FTP Command Execution via Credentials and MKD Commands

basic-ftp has FTP Command Injection via CRLF

Recent PRs

Package Details

Security Advisories

4

Package Information

PR Status

PR Types

`basic-ftp`