An issue exists in Webmin 2.021. One can exploit a stored Cross-Site Scripting (XSS) attack to achieve Remote Command Execution (RCE) through the Users and Group's real name parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
webmin webmin 2.021 |