Vulnerabilities > Maxum > Rumpus > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-01-12 CVE-2022-39187 Cross-site Scripting vulnerability in Maxum Rumpus
Rumpus - FTP server version 9.0.7.1 has a Reflected cross-site scripting (RXSS) vulnerability through unspecified vectors.
network
low complexity
maxum CWE-79
6.1
6.1
2023-01-12 CVE-2022-46369 Cross-site Scripting vulnerability in Maxum Rumpus
Rumpus - FTP server version 9.0.7.1 Persistent cross-site scripting (PXSS) – vulnerability may allow inserting scripts into unspecified input fields.
network
low complexity
maxum CWE-79
5.4
5.4
2021-03-08 CVE-2020-27575 Command Injection vulnerability in Maxum Rumpus 8.2.13/8.2.14
Maxum Rumpus 8.2.13 and 8.2.14 is affected by a command injection vulnerability.
network
low complexity
maxum CWE-77
6.5
6.5
2021-03-08 CVE-2020-27574 Cross-Site Request Forgery (CSRF) vulnerability in Maxum Rumpus 8.2.13/8.2.14
Maxum Rumpus 8.2.13 and 8.2.14 is affected by cross-site request forgery (CSRF).
network
maxum CWE-352
6.8
6.8
2020-05-08 CVE-2020-12737 Path Traversal vulnerability in Maxum Rumpus
An issue was discovered in Maxum Rumpus before 8.2.12 on macOS.
network
low complexity
maxum CWE-22
4.0
4.0
2020-02-10 CVE-2019-19665 Cross-Site Request Forgery (CSRF) vulnerability in Maxum Rumpus 8.2.9.1
A CSRF vulnerability exists in the FTP Settings of Web File Manager in Rumpus FTP 8.2.9.1.
network
maxum CWE-352
4.3
4.3
2020-02-10 CVE-2019-19663 Cross-Site Request Forgery (CSRF) vulnerability in Maxum Rumpus 8.2.9.1
A CSRF vulnerability exists in the Folder Sets Settings of Web File Manager in Rumpus FTP 8.2.9.1.
network
maxum CWE-352
5.8
5.8
2020-02-10 CVE-2019-19660 Cross-Site Request Forgery (CSRF) vulnerability in Maxum Rumpus 8.2.9.1
A CSRF vulnerability exists in the Web File Manager's Network Setting functionality of Rumpus FTP Server 8.2.9.1.
network
maxum CWE-352
4.3
4.3
2020-02-10 CVE-2019-19659 Cross-Site Request Forgery (CSRF) vulnerability in Maxum Rumpus 8.2.9.1
A CSRF vulnerability exists in the Web File Manager's Edit Accounts functionality of Rumpus FTP Server 8.2.9.1.
network
maxum CWE-352
6.8
6.8
2020-02-02 CVE-2020-8514 Cross-site Scripting vulnerability in Maxum Rumpus 8.2.10
An issue was discovered in Rumpus 8.2.10 on macOS.
network
maxum CWE-79
4.3
4.3