Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
usermin vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-41153
A Stored Cross-Site Scripting (XSS) vulnerability in the SSH configuration tab in Usermin 2.001 allows remote malicious users to inject arbitrary web script or HTML via options for the host value while editing the host options.
Webmin Usermin 2.001
5.4
CVSSv3
CVE-2023-41154
A Stored Cross-Site Scripting (XSS) vulnerability in the scheduled cron jobs tab in Usermin 2.000 allows remote malicious users to inject arbitrary web script or HTML via the value field parameter while creating a new environment variable.
Webmin Usermin 2.000
5.4
CVSSv3
CVE-2023-41156
A Stored Cross-Site Scripting (XSS) vulnerability in the filter and forward mail tab in Usermin 2.001 allows remote malicious users to inject arbitrary web script or HTML via the save to new folder named field while creating a new filter.
Webmin Usermin 2.001
5.4
CVSSv3
CVE-2023-41157
Multiple stored cross-site scripting (XSS) vulnerabilities in Usermin 2.000 allow remote malicious users to inject arbitrary web script or HTML via the folder name parameter while creating the folder to manage the folder tab, filter tab, and forward mail tab.
Webmin Usermin 2.000
5.4
CVSSv3
CVE-2023-41158
A Stored Cross-Site Scripting (XSS) vulnerability in the MIME type programs tab in Usermin 2.000 allows remote malicious users to inject arbitrary web script or HTML via the description field while creating a new MIME type program.
Webmin Usermin 2.000
5.4
CVSSv3
CVE-2023-41159
A Stored Cross-Site Scripting (XSS) vulnerability while editing the autoreply file page in Usermin 2.000 allows remote malicious users to inject arbitrary web script or HTML by editing the forward file manually.
Webmin Usermin 2.000
5.4
CVSSv3
CVE-2023-41161
Multiple stored cross-site scripting (XSS) vulnerabilities in Usermin 2.000 allow remote malicious users to inject arbitrary web script or HTML via the key comment to different pages such as public key details, Export key, sign key, send to key server page, and fetch from key ser...
Webmin Usermin 2.000
6.1
CVSSv3
CVE-2023-41162
A Reflected Cross-site scripting (XSS) vulnerability in the file manager tab in Usermin 2.000 allows remote malicious users to inject arbitrary web script or HTML via the file mask field while searching under the tools drop down.
Webmin Usermin 2.000
5.4
CVSSv3
CVE-2023-41160
A Stored Cross-Site Scripting (XSS) vulnerability in the SSH configuration tab in Usermin 2.001 allows remote malicious users to inject arbitrary web script or HTML via the key name field while adding an authorized key.
Webmin Usermin 2.001
NA
CVE-2007-3156
Multiple cross-site scripting (XSS) vulnerabilities in pam_login.cgi in Webmin prior to 1.350 and Usermin prior to 1.280 allow remote malicious users to inject arbitrary web script or HTML via the (1) cid, (2) message, or (3) question parameter. NOTE: some of these details are ob...
Webmin Usermin
Webmin Webmin
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »