Vulnerabilities > Maxum > Rumpus > 8.2.9.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-12 | CVE-2022-39187 | Cross-site Scripting vulnerability in Maxum Rumpus Rumpus - FTP server version 9.0.7.1 has a Reflected cross-site scripting (RXSS) vulnerability through unspecified vectors. | 6.1 |
| 2023-01-12 | CVE-2022-46367 | Cross-Site Request Forgery (CSRF) vulnerability in Maxum Rumpus Rumpus - FTP server Cross-site request forgery (CSRF) – Privilege escalation vulnerability that may allow privilege escalation. | 8.8 |
| 2023-01-12 | CVE-2022-46368 | Cross-Site Request Forgery (CSRF) vulnerability in Maxum Rumpus Rumpus - FTP server version 9.0.7.1 Cross-site request forgery (CSRF) – vulnerability may allow unauthorized action on behalf of authenticated users. | 8.8 |
| 2023-01-12 | CVE-2022-46369 | Cross-site Scripting vulnerability in Maxum Rumpus Rumpus - FTP server version 9.0.7.1 Persistent cross-site scripting (PXSS) – vulnerability may allow inserting scripts into unspecified input fields. | 5.4 |
| 2023-01-12 | CVE-2022-46370 | Insufficient Verification of Data Authenticity vulnerability in Maxum Rumpus Rumpus - FTP server version 9.0.7.1 Improper Token Verification– vulnerability may allow bypassing identity verification. | 7.5 |
| 2020-02-10 | CVE-2019-19665 | Cross-Site Request Forgery (CSRF) vulnerability in Maxum Rumpus 8.2.9.1 A CSRF vulnerability exists in the FTP Settings of Web File Manager in Rumpus FTP 8.2.9.1. | 4.3 |
| 2020-02-10 | CVE-2019-19663 | Cross-Site Request Forgery (CSRF) vulnerability in Maxum Rumpus 8.2.9.1 A CSRF vulnerability exists in the Folder Sets Settings of Web File Manager in Rumpus FTP 8.2.9.1. | 5.8 |
| 2020-02-10 | CVE-2019-19660 | Cross-Site Request Forgery (CSRF) vulnerability in Maxum Rumpus 8.2.9.1 A CSRF vulnerability exists in the Web File Manager's Network Setting functionality of Rumpus FTP Server 8.2.9.1. | 4.3 |
| 2020-02-10 | CVE-2019-19659 | Cross-Site Request Forgery (CSRF) vulnerability in Maxum Rumpus 8.2.9.1 A CSRF vulnerability exists in the Web File Manager's Edit Accounts functionality of Rumpus FTP Server 8.2.9.1. | 6.8 |
| 2019-12-16 | CVE-2019-19368 | Cross-site Scripting vulnerability in Maxum Rumpus 8.2.9.1 A Reflected Cross Site Scripting was discovered in the Login page of Rumpus FTP Web File Manager 8.2.9.1. | 4.3 |