Webmin 1.840 Local File Inclusion Vulnerability

According to its self-reported version, the Webmin install hosted on the remote host is 1.840 or 1.880. It is, therefore, affected by a local file inclusion vulnerability. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version...

Webmin File Read Vulnerability

Webmin is a web-based system administration tool for Unix-like operating systems developed by Australian software developer Jamie Cameron and the Webmin community. A security vulnerability exists in Webmin versions 1.840 and 1.880 that stems from weak default configuration settings. The...

CVE-2018-8712

An issue was discovered in Webmin 1.840 and 1.880 when the default Yes setting of "Can view any file as a log file" is enabled. As a result of weak default configuration settings, limited users have full access rights to the underlying Unix system files, allowing the user to read sensitive data...

Webmin 1.840 Cross Site Scripting Vulnerability

Exploit for cgi platform in category web applications Vulnerability type: Reflected Cross Site Scripting ------------------------ Product: Webmin ------------------------ Affected version: Webmin 1.840 and possibly earlier ------------------------ Patched version: Webmin 1.850...

MGASA-2017-0142 Updated webmin packages fix security vulnerability

The webmin package has been updated to version 1.840, which fixes cross-site scripting XSS issues, and has other bug fixes and enhancements. See the upstream release announcements and change log for details...