Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webmin webmin vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2021-32157
A Cross-Site Scripting (XSS) vulnerability exists in Webmin 1.973 via the Scheduled Cron Jobs feature.
Webmin Webmin 1.973
1 Github repository
4.3
CVSSv2
CVE-2021-32160
A Cross-Site Scripting (XSS) vulnerability exists in Webmin 1.973 through the Add Users feature.
Webmin Webmin 1.973
4.3
CVSSv2
CVE-2021-32161
A Cross-Site Scripting (XSS) vulnerability exists in Webmin 1.973 through the File Manager feature.
Webmin Webmin 1.973
NA
CVE-2023-38303
An issue exists in Webmin 2.021. One can exploit a stored Cross-Site Scripting (XSS) attack to achieve Remote Command Execution (RCE) through the Users and Group's real name parameter.
Webmin Webmin 2.021
NA
CVE-2023-38304
An issue exists in Webmin 2.021. A Stored Cross-Site Scripting (XSS) vulnerability exists in the Users and Groups functionality, allowing an malicious user to store a malicious payload in the Group Name field when creating a new group.
Webmin Webmin 2.021
NA
CVE-2023-38305
An issue exists in Webmin 2.021. The download functionality allows an malicious user to exploit a Cross-Site Scripting (XSS) vulnerability. By providing a crafted download path containing a malicious payload, an attacker can inject arbitrary code, which is then executed within th...
Webmin Webmin 2.021
NA
CVE-2023-38306
An issue exists in Webmin 2.021. A Cross-site Scripting (XSS) Bypass vulnerability exists in the file upload functionality. Normally, the application restricts the upload of certain file types such as .svg, .php, etc., and displays an error message if a prohibited file type is de...
Webmin Webmin 2.021
NA
CVE-2023-38307
An issue exists in Webmin 2.021. A Stored Cross-Site Scripting (XSS) vulnerability exists in the Users and Groups functionality. The vulnerability occurs when an authenticated user adds a new user and inserts an XSS payload into the user's real name.
Webmin Webmin 2.021
NA
CVE-2023-38308
An issue exists in Webmin 2.021. A Cross-Site Scripting (XSS) vulnerability exists in the HTTP Tunnel functionality when handling third-party domain URLs. By providing a crafted URL from a third-party domain, an attacker can inject malicious code. leading to the execution of arbi...
Webmin Webmin 2.021
NA
CVE-2023-38310
An issue exists in Webmin 2.021. A Stored Cross-Site Scripting (XSS) vulnerability exists in the configuration settings of the system logs functionality. The vulnerability allows an malicious user to store an XSS payload in the configuration settings of specific log files. This r...
Webmin Webmin 2.021
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »