Vulnerabilities > Maxum

DATE CVE VULNERABILITY TITLE RISK
2020-02-10 CVE-2019-19659 Cross-Site Request Forgery (CSRF) vulnerability in Maxum Rumpus 8.2.9.1
A CSRF vulnerability exists in the Web File Manager's Edit Accounts functionality of Rumpus FTP Server 8.2.9.1.
network
maxum CWE-352
6.8
2020-02-02 CVE-2020-8514 Cross-site Scripting vulnerability in Maxum Rumpus 8.2.10
An issue was discovered in Rumpus 8.2.10 on macOS.
network
maxum CWE-79
4.3
2019-12-16 CVE-2019-19368 Cross-site Scripting vulnerability in Maxum Rumpus 8.2.9.1
A Reflected Cross Site Scripting was discovered in the Login page of Rumpus FTP Web File Manager 8.2.9.1.
network
maxum CWE-79
4.3
2009-08-25 CVE-2008-7078 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Maxum Rumpus
Multiple buffer overflows in Rumpus before 6.0.1 allow remote attackers to (1) cause a denial of service (segmentation fault) via a long HTTP verb in the HTTP component; and allow remote authenticated users to execute arbitrary code via a long argument to the (2) MKD, (3) XMKD, (4) RMD, and other unspecified commands in the FTP component.
network
low complexity
maxum CWE-119
critical
9.0