Vulnerabilities > Maxum > Rumpus > 8.2.10
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-12 | CVE-2022-39187 | Cross-site Scripting vulnerability in Maxum Rumpus Rumpus - FTP server version 9.0.7.1 has a Reflected cross-site scripting (RXSS) vulnerability through unspecified vectors. | 6.1 |
| 2023-01-12 | CVE-2022-46367 | Cross-Site Request Forgery (CSRF) vulnerability in Maxum Rumpus Rumpus - FTP server Cross-site request forgery (CSRF) – Privilege escalation vulnerability that may allow privilege escalation. | 8.8 |
| 2023-01-12 | CVE-2022-46368 | Cross-Site Request Forgery (CSRF) vulnerability in Maxum Rumpus Rumpus - FTP server version 9.0.7.1 Cross-site request forgery (CSRF) – vulnerability may allow unauthorized action on behalf of authenticated users. | 8.8 |
| 2023-01-12 | CVE-2022-46369 | Cross-site Scripting vulnerability in Maxum Rumpus Rumpus - FTP server version 9.0.7.1 Persistent cross-site scripting (PXSS) – vulnerability may allow inserting scripts into unspecified input fields. | 5.4 |
| 2023-01-12 | CVE-2022-46370 | Insufficient Verification of Data Authenticity vulnerability in Maxum Rumpus Rumpus - FTP server version 9.0.7.1 Improper Token Verification– vulnerability may allow bypassing identity verification. | 7.5 |
| 2020-02-02 | CVE-2020-8514 | Cross-site Scripting vulnerability in Maxum Rumpus 8.2.10 An issue was discovered in Rumpus 8.2.10 on macOS. | 4.3 |