Improper handling of insufficient permissions or privileges vulnerability exists in ajaxterm module of Webmin prior to 2.003. If this vulnerability is exploited, a console session may be hijacked by an unauthorized user. As a result, data within a system may be referred, a webpage may be altered, or a server may be permanently halted.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HWebmin
APPWebmin< 2.003
Powiązane podatności
An issue was discovered in Webmin <=1.920. The parameter old in password_change.cgi contains a command injecti...
software/apt-lib.pl in Webmin before 1.997 lacks HTML escaping for a UI command.
A Cross-Site Scripting (XSS) vulnerability exists in Webmin 1.973 via the Scheduled Cron Jobs feature.
Webmin 1.973 is affected by reflected Cross Site Scripting (XSS) to achieve Remote Command Execution through W...
miniserv.pl in Webmin 1.962 on Windows mishandles special characters in query arguments to the CGI program.