Webmin 1.900 allows remote malicious users to execute arbitrary code by leveraging the "Java file manager" and "Upload and Download" privileges to upload a crafted .cgi file via the /updown/upload.cgi URI.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
webmin webmin 1.900 |