exploitDog

CVE-2019-19668

Опубликовано: 10 фев. 2020

Источник: nvd

CVSS3: 4.3

CVSS2: 4.3

EPSS Низкий

Описание

A CSRF vulnerability exists in the File Types component of Web File Manager in Rumpus FTP 8.2.9.1 that allows an attacker to add or delete the file types that are used on the server via RAPR/TriggerServerFunction.html.

Ссылки

https://github.com/harshit-shukla/CVE
Third Party Advisory
https://github.com/harshit-shukla/CVE/blob/master/CVE-2019-19668.md
Third Party Advisory
https://github.com/harshit-shukla/CVE
Third Party Advisory
https://github.com/harshit-shukla/CVE/blob/master/CVE-2019-19668.md
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:maxum:rumpus_ftp:8.2.9.1:*:*:*:*:windows:*:*

EPSS

Процентиль: 37%

0.00161

Низкий

4.3 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-352

Связанные уязвимости

GHSA-g9vc-549w-89mj

github

больше 3 лет назад

A CSRF vulnerability exists in the File Types component of Web File Manager in Rumpus FTP 8.2.9.1 that allows an attacker to add or delete the file types that are used on the server via RAPR/TriggerServerFunction.html.

EPSS

Процентиль: 37%

0.00161

Низкий

4.3 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-352