VYPR
Vendor

Rumble

Products
2
CVEs
4
Across products
4
Status
Private

Products

2

Recent CVEs

4
  • CVE-2021-43456HigApr 4, 2022
    risk 0.51cvss 7.8epss 0.00

    An Unquoted Service Path vulnerablility exists in Rumble Mail Server 0.51.3135 via via a specially crafted file in the RumbleService executable service path.

  • CVE-2021-43462MedApr 4, 2022
    risk 0.35cvss 5.4epss 0.01

    A Cross Site Scripting (XSS) vulnerability exists in Rumble Mail Server 0.51.3135 via the username parameter.

  • CVE-2021-43461MedApr 4, 2022
    risk 0.35cvss 5.4epss 0.01

    Cross Site Scripting (XSS) vulnerability exists in Rumble Mail Server 0.51.3135 via the servername parameter.

  • CVE-2006-2872Jun 6, 2006
    risk 0.00cvss epss 0.02

    PHP remote file inclusion vulnerability in config.php in Rumble 1.02 allows remote attackers to execute arbitrary PHP code via a URL in the configArr[pathtodir] parameter.