Vulnerabilities > Maxum > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-12 | CVE-2022-46367 | Cross-Site Request Forgery (CSRF) vulnerability in Maxum Rumpus Rumpus - FTP server Cross-site request forgery (CSRF) – Privilege escalation vulnerability that may allow privilege escalation. | 8.8 |
| 2023-01-12 | CVE-2022-46368 | Cross-Site Request Forgery (CSRF) vulnerability in Maxum Rumpus Rumpus - FTP server version 9.0.7.1 Cross-site request forgery (CSRF) – vulnerability may allow unauthorized action on behalf of authenticated users. | 8.8 |
| 2023-01-12 | CVE-2022-46370 | Insufficient Verification of Data Authenticity vulnerability in Maxum Rumpus Rumpus - FTP server version 9.0.7.1 Improper Token Verification– vulnerability may allow bypassing identity verification. | 7.5 |
| 2021-03-08 | CVE-2020-27575 | OS Command Injection vulnerability in Maxum Rumpus 8.2.13/8.2.14 Maxum Rumpus 8.2.13 and 8.2.14 is affected by a command injection vulnerability. | 8.8 |
| 2021-03-08 | CVE-2020-27574 | Cross-Site Request Forgery (CSRF) vulnerability in Maxum Rumpus 8.2.13/8.2.14 Maxum Rumpus 8.2.13 and 8.2.14 is affected by cross-site request forgery (CSRF). | 8.8 |
| 2020-02-10 | CVE-2019-19664 | Cross-Site Request Forgery (CSRF) vulnerability in Maxum Rumpus FTP 8.2.9.1 A CSRF vulnerability exists in the Web Settings of Web File Manager in Rumpus FTP 8.2.9.1. | 7.1 |
| 2020-02-10 | CVE-2019-19659 | Cross-Site Request Forgery (CSRF) vulnerability in Maxum Rumpus 8.2.9.1 A CSRF vulnerability exists in the Web File Manager's Edit Accounts functionality of Rumpus FTP Server 8.2.9.1. | 8.8 |