Directory traversal vulnerability in edit_action.cgi of Webmin Directory 0.91 allows malicious users to gain privileges via a '..' (dot dot) in the argument.
source: wwwsecurityfocuscom/bid/3698/info
Webmin is a web-based interface for system administration for Unix Using any browser that supports tables and forms, you can setup user accounts, Apache, DNS, file sharing and so on Webmin will run on most Unix variants, providing it has been properly configured
Webmin does not adequately filt ...