5 matches found
Advisory ROSA-SA-2025-2650
Software: webmin 2.105 WASP: ROSA-CHROME packageevrstring: webmin-2.105-1 CVE-ID: CVE-2022-3844 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in Webmin allows basic client-side scripting to be run via the xterm/index.cgi function. CVE-STATUS: The vulnerability has been resolved CVE-REV...
CVE-2023-43309
creationtimestamp| type| source ---|---|--- 2023-09-21 18:31:10+00:00| seen| https://t.me/cibsecurity/70898...
CVE-2023-43309
There is a stored cross-site scripting XSS vulnerability in Webmin 2.002 and below via the Cluster Cron Job tab Input field, which allows attackers to run malicious scripts by injecting a specially crafted payload...
CVE-2023-43309
There is a stored cross-site scripting XSS vulnerability in Webmin 2.002 and below via the Cluster Cron Job tab Input field, which allows attackers to run malicious scripts by injecting a specially crafted payload...
CVE-2023-43309
CVE-2023-43309 affects Webmin 2.002 and earlier. The vulnerability is a stored XSS via the Cluster Cron Job tab Input field, allowing remote attackers to inject and execute scripts. The issue is noted across multiple sources; a patch exists in Webmin 2.003 or later (per vulnerability scanners ref...