CSRF Vulnerability in Rumpus FTP 8.2.9.1 Web File Manager's File Types Component

CVE-2019-19668 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

A CSRF vulnerability exists in the File Types component of Web File Manager in Rumpus FTP 8.2.9.1 that allows an attacker to add or delete the file types that are used on the server via RAPR/TriggerServerFunction.html.

Learn more about our Web App Pen Testing.