A CSRF vulnerability exists in the Web File Manager's Edit Accounts functionality of Rumpus FTP Server 8.2.9.1. By exploiting it, an attacker can take over a user account by changing the password, update users' details, and escalate privileges via RAPR/DefineUsersSet.html.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-02-10T15:48:55
Updated: 2024-08-05T02:25:12.058Z
Reserved: 2019-12-09T00:00:00
Link: CVE-2019-19659
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-02-10T16:15:13.953
Modified: 2020-02-11T15:23:54.110
Link: CVE-2019-19659
Redhat
No data.