CSRF Vulnerability in Rumpus FTP 8.2.9.1 Web File Manager's Block Clients Component

CSRF Vulnerability in Rumpus FTP 8.2.9.1 Web File Manager's Block Clients Component

CVE-2019-19667 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L

A CSRF vulnerability exists in the Block Clients component of Web File Manager in Rumpus FTP 8.2.9.1 that could allow an attacker to whitelist or block any IP address via RAPR/BlockedClients.html.

Learn more about our Web App Pen Testing.