Filtered by vendor Maxum
Subscriptions
Total
29 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2019-19666 | 1 Maxum | 1 Rumpus Ftp | 2024-11-21 | 4.3 Medium |
| A CSRF vulnerability exists in the Event Notices Settings of Web File Manager in Rumpus FTP 8.2.9.1. An attacker can create/update event notices via RAPR/EventNoticesSet.html. | ||||
| CVE-2019-19665 | 1 Maxum | 1 Rumpus | 2024-11-21 | 6.5 Medium |
| A CSRF vulnerability exists in the FTP Settings of Web File Manager in Rumpus FTP 8.2.9.1. Exploitation of this vulnerability can result in manipulation of Server FTP settings at RAPR/FTPSettingsSet.html. | ||||
| CVE-2019-19664 | 1 Maxum | 1 Rumpus Ftp | 2024-11-21 | 7.1 High |
| A CSRF vulnerability exists in the Web Settings of Web File Manager in Rumpus FTP 8.2.9.1. Exploitation of this vulnerability can result in manipulation of Server Web settings at RAPR/WebSettingsGeneralSet.html. | ||||
| CVE-2019-19663 | 1 Maxum | 1 Rumpus | 2024-11-21 | 6.5 Medium |
| A CSRF vulnerability exists in the Folder Sets Settings of Web File Manager in Rumpus FTP 8.2.9.1. This allows an attacker to Create/Delete Folders after exploiting it at RAPR/FolderSetsSet.html. | ||||
| CVE-2019-19662 | 1 Maxum | 1 Rumpus Ftp | 2024-11-21 | 6.5 Medium |
| A CSRF vulnerability exists in the Web File Manager's Create/Delete Accounts functionality of Rumpus FTP Server 8.2.9.1. By exploiting it, an attacker can Create and Delete accounts via RAPR/TriggerServerFunction.html. | ||||
| CVE-2019-19661 | 1 Maxum | 1 Rumpus Ftp | 2024-11-21 | 6.1 Medium |
| A Cookie based reflected XSS exists in the Web File Manager of Rumpus FTP Server 8.2.9.1, related to RumpusLoginUserName and snp. | ||||
| CVE-2019-19660 | 1 Maxum | 1 Rumpus | 2024-11-21 | 6.5 Medium |
| A CSRF vulnerability exists in the Web File Manager's Network Setting functionality of Rumpus FTP Server 8.2.9.1. By exploiting it, an attacker can manipulate the SMTP setting and other network settings via RAPR/NetworkSettingsSet.html. | ||||
| CVE-2019-19659 | 1 Maxum | 1 Rumpus | 2024-11-21 | 8.8 High |
| A CSRF vulnerability exists in the Web File Manager's Edit Accounts functionality of Rumpus FTP Server 8.2.9.1. By exploiting it, an attacker can take over a user account by changing the password, update users' details, and escalate privileges via RAPR/DefineUsersSet.html. | ||||
| CVE-2019-19368 | 1 Maxum | 1 Rumpus | 2024-11-21 | 6.1 Medium |
| A Reflected Cross Site Scripting was discovered in the Login page of Rumpus FTP Web File Manager 8.2.9.1. An attacker can exploit it by sending a crafted link to end users and can execute arbitrary Javascripts | ||||