exploitDog

CVE-2019-19669

Опубликовано: 10 фев. 2020

Источник: nvd

CVSS3: 6.5

CVSS2: 5.8

EPSS Низкий

Описание

A CSRF vulnerability exists in the Upload Center Forms Component of Web File Manager in Rumpus FTP 8.2.9.1. This could allow an attacker to delete, create, and update the upload forms via RAPR/TriggerServerFunction.html.

Ссылки

https://github.com/harshit-shukla/CVE
Third Party Advisory
https://github.com/harshit-shukla/CVE/blob/master/CVE-2019-19669.md
Third Party Advisory
https://github.com/harshit-shukla/CVE
Third Party Advisory
https://github.com/harshit-shukla/CVE/blob/master/CVE-2019-19669.md
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:maxum:rumpus_ftp:8.2.9.1:*:*:*:*:windows:*:*

EPSS

Процентиль: 37%

0.00161

Низкий

6.5 Medium

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-352

Связанные уязвимости

GHSA-3fcf-gf78-2qgj

github

больше 3 лет назад

A CSRF vulnerability exists in the Upload Center Forms Component of Web File Manager in Rumpus FTP 8.2.9.1. This could allow an attacker to delete, create, and update the upload forms via RAPR/TriggerServerFunction.html.

EPSS

Процентиль: 37%

0.00161

Низкий

6.5 Medium

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-352