Rumpus Ftp Security Vulnerabilities and Issues — Rumpus Ftp CVE List

Lucene search

MaxumRumpus Ftp

4 matches found

CVE•added 2020/02/10 6:15 p.m.•48 views

CVE-2019-19670

A HTTP Response Splitting vulnerability was identified in the Web Settings Component of Web File Manager in Rumpus FTP Server 8.2.9.1. A successful exploit can result in stored XSS, website defacement, etc. via ExtraHTTPHeader to RAPR/WebSettingsGeneralSet.html.

6.1CVSS6.1AI score0.00328EPSS

CVE•added 2020/02/10 6:15 p.m.•45 views

CVE-2019-19661

A Cookie based reflected XSS exists in the Web File Manager of Rumpus FTP Server 8.2.9.1, related to RumpusLoginUserName and snp.

6.1CVSS5.9AI score0.00328EPSS

CVE•added 2020/02/10 6:15 p.m.•45 views

CVE-2019-19669

A CSRF vulnerability exists in the Upload Center Forms Component of Web File Manager in Rumpus FTP 8.2.9.1. This could allow an attacker to delete, create, and update the upload forms via RAPR/TriggerServerFunction.html.

6.5CVSS6.4AI score0.00161EPSS

CVE•added 2020/02/10 5:15 p.m.•43 views

CVE-2019-19662

A CSRF vulnerability exists in the Web File Manager's Create/Delete Accounts functionality of Rumpus FTP Server 8.2.9.1. By exploiting it, an attacker can Create and Delete accounts via RAPR/TriggerServerFunction.html.

6.5CVSS6.5AI score0.00161EPSS