Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
maxum vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2019-19663
A CSRF vulnerability exists in the Folder Sets Settings of Web File Manager in Rumpus FTP 8.2.9.1. This allows an malicious user to Create/Delete Folders after exploiting it at RAPR/FolderSetsSet.html.
Maxum Rumpus 8.2.9.1
6.1
CVSSv3
CVE-2020-8514
An issue exists in Rumpus 8.2.10 on macOS. By crafting a directory name, it is possible to activate JavaScript in the context of the web application after invoking the rename folder functionality.
Maxum Rumpus 8.2.10
6.1
CVSSv3
CVE-2019-19368
A Reflected Cross Site Scripting exists in the Login page of Rumpus FTP Web File Manager 8.2.9.1. An attacker can exploit it by sending a crafted link to end users and can execute arbitrary Javascripts
Maxum Rumpus 8.2.9.1
NA
CVE-2008-7078
Multiple buffer overflows in Rumpus prior to 6.0.1 allow remote malicious users to (1) cause a denial of service (segmentation fault) via a long HTTP verb in the HTTP component; and allow remote authenticated users to execute arbitrary code via a long argument to the (2) MKD, (3)...
Maxum Rumpus
1 EDB exploit
NA
CVE-2007-0366
Untrusted search path vulnerability in Rumpus 5.1 and previous versions allows local users to gain privileges via a modified PATH that points to a malicious ipfw program.
Maxum Development Corporation Rumpus Ftp Server
NA
CVE-2007-0367
Rumpus 5.1 and previous versions has weak permissions for certain files and directories under /usr/local/Rumpus, including the configuration file, which allows local users to have an unknown impact by creating, modifying, or deleting files.
Maxum Development Corporation Rumpus Ftp Server
NA
CVE-2007-0019
Multiple heap-based buffer overflows in rumpusd in Rumpus 5.1 and previous versions (1) allow remote authenticated users to execute arbitrary code via a long LIST command and other unspecified requests to the FTP service, and (2) allow remote malicious users to execute arbitrary ...
Maxum Development Corporation Rumpus Ftp Server
1 EDB exploit
NA
CVE-2001-0644
Maxum Rumpus FTP Server 1.3.3 and 2.0.3 dev 3 stores passwords in plaintext in the "Rumpus User Database" file in the prefs folder, which could allow malicious users to gain privileges on the server.
Maxum Development Corporation Rumpus Ftp Server 1.3.2
Maxum Development Corporation Rumpus Ftp Server 1.3.3
Maxum Development Corporation Rumpus Ftp Server 1.3.4
Maxum Development Corporation Rumpus Ftp Server
NA
CVE-2001-0706
Maximum Rumpus FTP Server 2.0.3 dev and before allows an malicious user to cause a denial of service (crash) via a mkdir command that specifies a large number of sub-folders.
Maxum Development Corporation Rumpus Ftp Server 1.3.4
Maxum Development Corporation Rumpus Ftp Server 1.3.5
Maxum Development Corporation Rumpus Ftp Server 2.0.3dev
Maxum Development Corporation Rumpus Ftp Server 1.3.2
1 EDB exploit
NA
CVE-2001-0646
Maxum Rumpus FTP Server 1.3.3 and 2.0.3 dev 3 allows a remote malicious user to perform a denial of service (hang) by creating a directory name of a specific length.
Maxum Development Corporation Rumpus Ftp Server 1.3.2
Maxum Development Corporation Rumpus Ftp Server 1.3.4
Maxum Development Corporation Rumpus Ftp Server 2.0.3dev
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3