Product
maxum rumpus
21 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-55059
CVE-2025-55058
CVE-2025-55057
CVE-2025-55056
CVE-2025-55055
CVE-2022-46370
CVE-2022-46369
CVE-2022-46368
CVE-2022-46367
CVE-2022-39187
CVE-2020-27576
CVE-2020-27575
CVE-2020-27574
CVE-2020-12737
CVE-2019-19665
CVE-2019-19663
CVE-2019-19660
CVE-2019-19659
CVE-2020-8514
CVE-2019-19368
CVE-2008-7078
all versions
CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
all versions
CWE-20 Improper Input Validation
all versions
Multiple CWE-352 Cross-Site Request Forgery (CSRF)
all versions
Multiple CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
all versions
CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
<= 9.0.7.1
Rumpus - FTP server version 9.0.7.1 Improper Token Verification-vulnerability may allow bypassing identity verification.
<= 9.0.7.1
Rumpus - FTP server version 9.0.7.1 Persistent cross-site scripting (PXSS) - vulnerability may allow inserting scripts into unspec
<= 9.0.7.1
Rumpus - FTP server version 9.0.7.1 Cross-site request forgery (CSRF) - vulnerability may allow unauthorized action on behalf of a
<= 9.0.7.1
Rumpus - FTP server Cross-site request forgery (CSRF) - Privilege escalation vulnerability that may allow privilege escalation.
<= 9.0.7.1
Rumpus - FTP server version 9.0.7.1 has a Reflected cross-site scripting (RXSS) vulnerability through unspecified vectors.
all versions
Maxum Rumpus 8.2.13 and 8.2.14 is affected by cross-site scripting (XSS). Users are able to create folders in the web application.
all versions
Maxum Rumpus 8.2.13 and 8.2.14 is affected by a command injection vulnerability. The web administration contains functionality in
all versions
Maxum Rumpus 8.2.13 and 8.2.14 is affected by cross-site request forgery (CSRF). If an authenticated user visits a malicious page,
< 8.2.12
An issue was discovered in Maxum Rumpus before 8.2.12 on macOS. Authenticated users can perform a path traversal using double esca
all versions
A CSRF vulnerability exists in the FTP Settings of Web File Manager in Rumpus FTP 8.2.9.1. Exploitation of this vulnerability can
all versions
A CSRF vulnerability exists in the Folder Sets Settings of Web File Manager in Rumpus FTP 8.2.9.1. This allows an attacker to Crea
all versions
A CSRF vulnerability exists in the Web File Manager's Network Setting functionality of Rumpus FTP Server 8.2.9.1. By exploiting it
all versions
A CSRF vulnerability exists in the Web File Manager's Edit Accounts functionality of Rumpus FTP Server 8.2.9.1. By exploiting it,
all versions
An issue was discovered in Rumpus 8.2.10 on macOS. By crafting a directory name, it is possible to activate JavaScript in the cont
all versions
A Reflected Cross Site Scripting was discovered in the Login page of Rumpus FTP Web File Manager 8.2.9.1. An attacker can exploit
<= 6.0
Multiple buffer overflows in Rumpus before 6.0.1 allow remote attackers to (1) cause a denial of service (segmentation fault) via