Multiple cross-site scripting (XSS) vulnerabilities in chooser.cgi in Webmin prior to 1.330 and Usermin prior to 1.260 allow remote malicious users to inject arbitrary web script or HTML via a crafted filename.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
usermin usermin 1.040 |
||
usermin usermin 1.051 |
||
usermin usermin 1.120 |
||
usermin usermin 1.130 |
||
webmin webmin 1.0.00 |
||
webmin webmin 1.0.10 |
||
webmin webmin 1.0.70 |
||
webmin webmin 1.0.80 |
||
webmin webmin 1.1.40 |
||
webmin webmin 1.1.50 |
||
webmin webmin 1.2.20 |
||
usermin usermin 1.020 |
||
usermin usermin 1.030 |
||
usermin usermin 1.100 |
||
usermin usermin 1.110 |
||
usermin usermin 1.240 |
||
usermin usermin 1.250 |
||
webmin webmin 1.0.51 |
||
webmin webmin 1.0.60 |
||
webmin webmin 1.1.21 |
||
webmin webmin 1.1.30 |
||
usermin usermin 1.060 |
||
usermin usermin 1.070 |
||
usermin usermin 1.140 |
||
usermin usermin 1.150 |
||
usermin usermin 1.210 |
||
webmin webmin 1.0.20 |
||
webmin webmin 1.0.30 |
||
webmin webmin 1.0.90 |
||
webmin webmin 1.1.00 |
||
webmin webmin 1.2.30 |
||
webmin webmin 1.2.40 |
||
usermin usermin 1.000 |
||
usermin usermin 1.010 |
||
usermin usermin 1.080 |
||
usermin usermin 1.090 |
||
usermin usermin 1.220 |
||
usermin usermin 1.230 |
||
webmin webmin 1.0.40 |
||
webmin webmin 1.0.50 |
||
webmin webmin 1.1.10 |
||
webmin webmin 1.1.20 |
||
webmin webmin 1.2.50 |
||
webmin webmin 1.3.20 |
Vulmon