Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webmin usermin 0.94 vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2002-0757
(1) Webmin 0.96 and (2) Usermin 0.90 with password timeouts enabled allow local and possibly remote malicious users to bypass authentication and gain privileges via certain control characters in the authentication information, which can force Webmin or Usermin to accept arbitrary...
Usermin Usermin 0.9
Usermin Usermin 0.8
Webmin Webmin 0.96
Webmin Webmin 0.93
Webmin Webmin 0.92
Webmin Webmin 0.95
Webmin Webmin 0.94
Webmin Webmin 0.91
Usermin Usermin 0.7
Webmin Webmin 0.92.1
668
VMScore
CVE-2002-0756
Cross-site scripting vulnerability in the authentication page for (1) Webmin 0.96 and (2) Usermin 0.90 allows remote malicious users to insert script into an error page and possibly steal cookies.
Usermin Usermin 0.9
Usermin Usermin 0.8
Webmin Webmin 0.96
Webmin Webmin 0.93
Webmin Webmin 0.92
Webmin Webmin 0.95
Webmin Webmin 0.94
Webmin Webmin 0.91
Usermin Usermin 0.7
Webmin Webmin 0.92.1
890
VMScore
CVE-2005-1177
Unknown vulnerability in (1) Webmin and (2) Usermin prior to 1.200 causes Webmin to change permissions and ownership of configuration files, with unknown impact.
Webmin Webmin 0.97
Usermin Usermin 0.91
Webmin Webmin 0.99
Usermin Usermin 1.070
Webmin Webmin 1.0.20
Webmin Webmin 1.0.51
Webmin Webmin 0.7
Webmin Webmin 1.0.10
Usermin Usermin 1.040
Usermin Usermin 0.9
Webmin Webmin 0.4
Usermin Usermin 1.060
Webmin Webmin 1.0.60
Usermin Usermin 0.8
Usermin Usermin 1.080
Usermin Usermin 1.100
Webmin Webmin 1.1.00
Webmin Webmin 1.1.30
Webmin Webmin 0.96
Webmin Webmin 0.90
Webmin Webmin 0.93
Webmin Webmin 1.0.00
605
VMScore
CVE-2006-4542
Webmin prior to 1.296 and Usermin prior to 1.226 do not properly handle a URL with a null ("%00") character, which allows remote malicious users to conduct cross-site scripting (XSS), read CGI program source code, list directories, and possibly execute programs.
Webmin Webmin 1.2.50
Webmin Webmin 0.97
Usermin Usermin 0.91
Webmin Webmin 0.22
Webmin Webmin 0.99
Usermin Usermin 1.070
Webmin Webmin 1.0.20
Webmin Webmin 1.0.51
Webmin Webmin 0.7
Webmin Webmin 1.0.10
Usermin Usermin 1.040
Webmin Webmin 0.88
Usermin Usermin 0.9
Webmin Webmin 0.4
Usermin Usermin 1.060
Webmin Webmin 1.1.50
Webmin Webmin 1.0.60
Usermin Usermin 0.8
Usermin Usermin 1.080
Usermin Usermin 1.100
Webmin Webmin 1.1.00
Usermin Usermin 1.210
1000
VMScore
CVE-2003-0101
miniserv.pl in (1) Webmin prior to 1.070 and (2) Usermin prior to 1.000 does not properly handle metacharacters such as line feeds and carriage returns (CRLF) in Base-64 encoded strings during Basic authentication, which allows remote malicious users to spoof a session ID and gai...
Usermin Usermin 0.91
Usermin Usermin 0.9
Webmin Webmin 1.0.60
Usermin Usermin 0.8
Usermin Usermin 0.97
Usermin Usermin 0.99
Usermin Usermin 0.6
Usermin Usermin 0.96
Usermin Usermin 0.5
Usermin Usermin 0.94
Usermin Usermin 0.95
Usermin Usermin 0.92
Usermin Usermin 0.98
Usermin Usermin 0.93
Webmin Webmin 1.0.50
Usermin Usermin 0.7
Engardelinux Guardian Digital Webtool 1.2
Usermin Usermin 0.4
1 EDB exploit
383
VMScore
CVE-2009-4568
Cross-site scripting (XSS) vulnerability in Webmin prior to 1.500 and Usermin prior to 1.430 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Webmin Usermin 0.7
Webmin Webmin 1.2.50
Webmin Webmin 0.97
Webmin Usermin 0.99
Webmin Webmin 0.22
Webmin Webmin 1.337
Webmin Usermin 1.3
Webmin Webmin 0.99
Webmin Webmin 0.990
Webmin Usermin 0.91
Webmin Usermin 0.97
Webmin Usermin 0.94
Webmin Webmin 1.0.20
Webmin Webmin 1.0.51
Webmin Webmin 0.7
Webmin Webmin 1.0.10
Webmin Webmin 0.88
Webmin Webmin 0.4
Webmin Webmin 1.1.50
Webmin Usermin 0.92
Webmin Webmin 1.0.60
Webmin Webmin 0.960
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2018-25103
CVE-2024-36279
CVE-2024-38457
elevation of privilege
CVE-2024-27801
CVE-2024-30103
NULL pointer dereference
CVE-2024-6057
XML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started