A CSRF vulnerability exists in the Event Notices Settings of Web File Manager in Rumpus FTP 8.2.9.1. An attacker can create/update event notices via RAPR/EventNoticesSet.html.Referenceshttps://github.com/harshit-shukla/CVEhttps://github.com/harshit-shukla/CVE/blob/master/CVE-2019-19666.md
