Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webmin webmin vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2016-4897
Multiple cross-site scripting (XSS) vulnerabilities in (1) filter/save_forward.cgi, (2) filter/save.cgi, (3) /man/search.cgi in Usermin prior to 1.690.
Webmin Usermin
5.4
CVSSv3
CVE-2023-41157
Multiple stored cross-site scripting (XSS) vulnerabilities in Usermin 2.000 allow remote malicious users to inject arbitrary web script or HTML via the folder name parameter while creating the folder to manage the folder tab, filter tab, and forward mail tab.
Webmin Usermin 2.000
5.4
CVSSv3
CVE-2023-40982
A stored cross-site scripting (XSS) vulnerability in Webmin v2.100 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the cloned module name parameter.
Webmin Webmin 2.100
5.4
CVSSv3
CVE-2023-40984
A reflected cross-site scripting (XSS) vulnerability in the File Manager function of Webmin v2.100 allows malicious users to execute malicious scripts via injecting a crafted payload into the Replace in Results file.
Webmin Webmin 2.100
5.4
CVSSv3
CVE-2023-40985
An issue exists in Webmin 2.100. The File Manager functionality allows an malicious user to exploit a Cross-Site Scripting (XSS) vulnerability. By providing a malicious payload, an attacker can inject arbitrary code, which is then executed within the context of the victim's ...
Webmin Webmin 2.100
5.4
CVSSv3
CVE-2023-40986
A stored cross-site scripting (XSS) vulnerability in the Usermin Configuration function of Webmin v2.100 allows malicious users to execute arbitrary web sripts or HTML via a crafted payload injected into the Custom field.
Webmin Webmin 2.100
5.4
CVSSv3
CVE-2023-41156
A Stored Cross-Site Scripting (XSS) vulnerability in the filter and forward mail tab in Usermin 2.001 allows remote malicious users to inject arbitrary web script or HTML via the save to new folder named field while creating a new filter.
Webmin Usermin 2.001
5.4
CVSSv3
CVE-2023-41159
A Stored Cross-Site Scripting (XSS) vulnerability while editing the autoreply file page in Usermin 2.000 allows remote malicious users to inject arbitrary web script or HTML by editing the forward file manually.
Webmin Usermin 2.000
5.4
CVSSv3
CVE-2023-41160
A Stored Cross-Site Scripting (XSS) vulnerability in the SSH configuration tab in Usermin 2.001 allows remote malicious users to inject arbitrary web script or HTML via the key name field while adding an authorized key.
Webmin Usermin 2.001
5.4
CVSSv3
CVE-2023-41152
A Stored Cross-Site Scripting (XSS) vulnerability in the MIME type programs tab in Usermin 2.000 allows remote malicious users to inject arbitrary web script or HTML via the handle program field while creating a new MIME type program.
Webmin Usermin 2.000
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »