Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webmin webmin vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-40982
A stored cross-site scripting (XSS) vulnerability in Webmin v2.100 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the cloned module name parameter.
Webmin Webmin 2.100
6.1
CVSSv3
CVE-2023-40983
A reflected cross-site scripting (XSS) vulnerability in the File Manager function of Webmin v2.100 allows malicious users to execute malicious scripts via injecting a crafted payload into the Find in Results file.
Webmin Webmin 2.100
5.4
CVSSv3
CVE-2023-40984
A reflected cross-site scripting (XSS) vulnerability in the File Manager function of Webmin v2.100 allows malicious users to execute malicious scripts via injecting a crafted payload into the Replace in Results file.
Webmin Webmin 2.100
5.4
CVSSv3
CVE-2023-40985
An issue exists in Webmin 2.100. The File Manager functionality allows an malicious user to exploit a Cross-Site Scripting (XSS) vulnerability. By providing a malicious payload, an attacker can inject arbitrary code, which is then executed within the context of the victim's ...
Webmin Webmin 2.100
5.4
CVSSv3
CVE-2023-40986
A stored cross-site scripting (XSS) vulnerability in the Usermin Configuration function of Webmin v2.100 allows malicious users to execute arbitrary web sripts or HTML via a crafted payload injected into the Custom field.
Webmin Webmin 2.100
9.6
CVSSv3
CVE-2021-31761
Webmin 1.973 is affected by reflected Cross Site Scripting (XSS) to achieve Remote Command Execution through Webmin's running process feature.
Webmin Webmin 1.973
2 Github repositories
5.4
CVSSv3
CVE-2023-38303
An issue exists in Webmin 2.021. One can exploit a stored Cross-Site Scripting (XSS) attack to achieve Remote Command Execution (RCE) through the Users and Group's real name parameter.
Webmin Webmin 2.021
5.4
CVSSv3
CVE-2023-38304
An issue exists in Webmin 2.021. A Stored Cross-Site Scripting (XSS) vulnerability exists in the Users and Groups functionality, allowing an malicious user to store a malicious payload in the Group Name field when creating a new group.
Webmin Webmin 2.021
6.1
CVSSv3
CVE-2023-38305
An issue exists in Webmin 2.021. The download functionality allows an malicious user to exploit a Cross-Site Scripting (XSS) vulnerability. By providing a crafted download path containing a malicious payload, an attacker can inject arbitrary code, which is then executed within th...
Webmin Webmin 2.021
5.4
CVSSv3
CVE-2023-38307
An issue exists in Webmin 2.021. A Stored Cross-Site Scripting (XSS) vulnerability exists in the Users and Groups functionality. The vulnerability occurs when an authenticated user adds a new user and inserts an XSS payload into the user's real name.
Webmin Webmin 2.021
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »