1
|
4.8
-
|
MEDIUM
Network
|
Cross Site Scripting vulnerability (XSS) in webmin v.2.105 and earlier allows a remote attacker to execute arbitrary code via a crafted payload to the "Execute cron job as" tab Input field.
|
CWE-79
Cross-site Scripting
|
CVE-2023-52046
|
cpe:2.3:a:webmin:webmin:*:*
|
|
2.105
|
|
|
2024-02-14 01:05
2024-01-26
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2
|
4.8
-
|
MEDIUM
Network
|
There is a stored cross-site scripting (XSS) vulnerability in Webmin 2.002 and below via the Cluster Cron Job tab Input field, which allows attackers to run malicious scripts by injecting a specially…
|
CWE-79
Cross-site Scripting
|
CVE-2023-43309
|
cpe:2.3:a:webmin:webmin:*:*
|
|
2.002
|
|
|
2023-09-22 11:15
2023-09-21
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
3
|
6.1
-
|
MEDIUM
Network
|
A reflected cross-site scripting (XSS) vulnerability in the File Manager function of Webmin v2.100 allows attackers to execute malicious scripts via injecting a crafted payload into the Find in Resul…
|
CWE-79
Cross-site Scripting
|
CVE-2023-40983
|
cpe:2.3:a:webmin:webmin:2.100:*
|
|
|
|
|
2023-09-19 22:07
2023-09-15
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
4
|
5.4
-
|
MEDIUM
Network
|
A stored cross-site scripting (XSS) vulnerability in Webmin v2.100 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cloned module name parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2023-40982
|
cpe:2.3:a:webmin:webmin:2.100:*
|
|
|
|
|
2023-09-20 23:39
2023-09-15
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
5
|
5.4
-
|
MEDIUM
Network
|
A stored cross-site scripting (XSS) vulnerability in the Usermin Configuration function of Webmin v2.100 allows attackers to execute arbitrary web sripts or HTML via a crafted payload injected into t…
|
CWE-79
Cross-site Scripting
|
CVE-2023-40986
|
cpe:2.3:a:webmin:webmin:2.100:*
|
|
|
|
|
2023-09-20 22:11
2023-09-15
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
6
|
5.4
-
|
MEDIUM
Network
|
An issue was discovered in Webmin 2.100. The File Manager functionality allows an attacker to exploit a Cross-Site Scripting (XSS) vulnerability. By providing a malicious payload, an attacker can inj…
|
CWE-79
Cross-site Scripting
|
CVE-2023-40985
|
cpe:2.3:a:webmin:webmin:2.100:*
|
|
|
|
|
2023-09-20 22:10
2023-09-15
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
7
|
5.4
-
|
MEDIUM
Network
|
A reflected cross-site scripting (XSS) vulnerability in the File Manager function of Webmin v2.100 allows attackers to execute malicious scripts via injecting a crafted payload into the Replace in Re…
|
CWE-79
Cross-site Scripting
|
CVE-2023-40984
|
cpe:2.3:a:webmin:webmin:2.100:*
|
|
|
|
|
2023-09-20 22:08
2023-09-15
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
8
|
5.4
-
|
MEDIUM
Network
|
A Stored Cross-Site Scripting (XSS) vulnerability in the mail forwarding and replies tab in Webmin and Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML via the forward to …
|
CWE-79
Cross-site Scripting
|
CVE-2023-41155
|
cpe:2.3:a:webmin:webmin:2.000:*
|
|
|
|
|
2023-09-18 23:12
2023-09-14
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
9
|
6.1
-
|
MEDIUM
Network
|
A Reflected Cross-site scripting (XSS) vulnerability in the file manager tab in Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML via the replace in results field while rep…
|
CWE-79
Cross-site Scripting
|
CVE-2023-41163
|
cpe:2.3:a:webmin:webmin:2.000:*
|
|
|
|
|
2023-09-6 04:37
2023-08-31
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
10
|
5.4
-
|
MEDIUM
Network
|
An issue was discovered in Webmin 2.021. A Stored Cross-Site Scripting (XSS) vulnerability was discovered in the Users and Groups functionality, allowing an attacker to store a malicious payload in t…
|
CWE-79
Cross-site Scripting
|
CVE-2023-38304
|
cpe:2.3:a:webmin:webmin:2.021:*
|
|
|
|
|
2023-08-4 12:55
2023-08-1
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|