CSRF Vulnerability in Rumpus FTP Server 8.2.9.1's Web File Manager Network Setting Functionality

CSRF Vulnerability in Rumpus FTP Server 8.2.9.1's Web File Manager Network Setting Functionality

CVE-2019-19660 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

A CSRF vulnerability exists in the Web File Manager's Network Setting functionality of Rumpus FTP Server 8.2.9.1. By exploiting it, an attacker can manipulate the SMTP setting and other network settings via RAPR/NetworkSettingsSet.html.

Learn more about our Web App Pen Testing.