CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

27 matches found

RedhatCVE•added 2025/05/23 8:30 a.m.•5 views

CVE-2024-44762

A discrepancy in error messages for invalid login attempts in Webmin Usermin v2.100 allows attackers to enumerate valid user accounts...

5.3CVSS6.8AI score0.13166EPSS

Exploits5References1

CNNVD•added 2025/04/28 12:0 a.m.•1 views

Webmin Usermin 安全漏洞

Webmin Usermin is a web-based interface from Webmin Inc. It is used for webmail, password change, mail filters, fetchmail, and more. A security vulnerability in Webmin Usermin versions 0.980 through prior to 1.660, which stems from the use of a Perl open function in the form of a two-parameter...

9.9CVSS7.8AI score0.02785EPSS

Exploits1References3

NVD•added 2024/10/16 9:15 p.m.•13 views

CVE-2024-44762

A discrepancy in error messages for invalid login attempts in Webmin Usermin v2.100 allows attackers to enumerate valid user accounts...

5.3CVSS0.13166EPSS

Exploits5References1

OSV•added 2024/10/16 9:15 p.m.•1 views

CVE-2024-44762

A discrepancy in error messages for invalid login attempts in Webmin Usermin v2.100 allows attackers to enumerate valid user accounts...

5.3CVSS6.9AI score0.13166EPSS

Exploits5References1

CNNVD•added 2024/10/16 12:0 a.m.•1 views

Webmin Usermin 安全漏洞

Webmin Usermin is a web-based interface from Webmin Inc. It is used for webmail, password change, mail filters, fetchmail, and more. A security vulnerability exists in Webmin Usermin version 2.100, which stems from a discrepancy in the error message for the presence of an invalid login attempt,...

5.3CVSS6.5AI score0.13166EPSS

Exploits5References5

CVE•added 2024/10/16 12:0 a.m.•93 views

CVE-2024-44762

Summary: CVE-2024-44762 affects Webmin Usermin v2.100 and earlier; it enables attacker’s username enumeration through the password-change flow due to inconsistent error messages. What’s affected: Usermin 2.100 and below (password-change endpoint exposes observable differences in responses when us...

5.3CVSS7.1AI score0.13166EPSS

Exploits5References1Affected Software1

Cvelist•added 2024/10/16 12:0 a.m.•15 views

CVE-2024-44762

A discrepancy in error messages for invalid login attempts in Webmin Usermin v2.100 allows attackers to enumerate valid user accounts...

0.13166EPSS

Exploits5References1

Vulnrichment•added 2024/10/16 12:0 a.m.•19 views

CVE-2024-44762

A discrepancy in error messages for invalid login attempts in Webmin Usermin v2.100 allows attackers to enumerate valid user accounts...

6.9AI score0.13166EPSS

Exploits5References1

Positive Technologies•added 2024/08/21 12:0 a.m.•2 views

PT-2024-7392

Name of the Vulnerable Software and Affected Versions: Webmin Usermin version 2.100 Description: A discrepancy in error messages for invalid login attempts in Webmin Usermin allows attackers to enumerate valid user accounts. This issue is related to shortcomings in the error reporting mechanism,...

5.3CVSS6.3AI score0.13166EPSS

Exploits5References13

CNNVD•added 2023/09/16 12:0 a.m.•2 views

Webmin Usermin Cross-Site Scripting Vulnerability

Webmin Usermin is a web-based interface from Webmin Inc. It is used for webmail, password change, mail filters, fetchmail, and more. A cross-site scripting vulnerability exists in Webmin Usermin version 2.000. A remote attacker can use this vulnerability to inject arbitrary web script or HTML via...

5.4CVSS6AI score0.00115EPSS

Exploits0References4

CNNVD•added 2023/09/14 12:0 a.m.•1 views

Usermin Cross-Site Scripting Vulnerability

Webmin Usermin is a web-based interface from Webmin Inc. It is used for webmail, password change, mail filters, fetchmail and more. A cross-site scripting vulnerability exists in Usermin version 2.001, which originates from a security issue within the filter, forward mail tab, that allows remote...

5.4CVSS5.8AI score0.00129EPSS

Exploits0References4

ATTACKERKB•added 2023/09/13 10:15 p.m.•0 views

CVE-2023-41155

A Stored Cross-Site Scripting XSS vulnerability in the mail forwarding and replies tab in Webmin and Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML via the forward to field while creating a mail forwarding rule...

5.4CVSS5.9AI score0.00118EPSS

Exploits0References3

Positive Technologies•added 2023/09/13 12:0 a.m.•2 views

PT-2023-27830 · Usermin +1 · Usermin +1

Name of the Vulnerable Software and Affected Versions: Webmin and Usermin version 2.000 Description: A Stored Cross-Site Scripting XSS issue exists in the mail forwarding and replies tab, allowing remote attackers to inject arbitrary web script or HTML via the forward to field while creating a ma...

5.4CVSS5.4AI score0.00118EPSS

Exploits0References5

CNNVD•added 2023/09/13 12:0 a.m.•2 views

Webmin Usermin Cross-Site Scripting Vulnerability

Webmin Usermin is a web-based interface from Webmin Inc. It is used for webmail, password change, mail filters, fetchmail, and more. A cross-site scripting vulnerability exists in Usermin version 2.000, which stems from a stored cross-site scripting XSS vulnerability in the MIME type program tab...

5.4CVSS5.8AI score0.00118EPSS

Exploits0References4

CNNVD•added 2023/09/13 12:0 a.m.•1 views

Webmin Usermin Cross-Site Scripting Vulnerability

Webmin Usermin is a web-based interface from Webmin Inc. It is used for webmail, password change, mail filters, fetchmail, and more. A cross-site scripting vulnerability exists in Webmin Usermin version 2.000, which stems from a reflected cross-site scripting XSS vulnerability in the File Manager...

6.1CVSS5.9AI score0.00127EPSS

Exploits0References4

CNNVD•added 2023/09/13 12:0 a.m.•2 views

Webmin Usermin Cross-Site Scripting Vulnerability

Webmin Usermin is a web-based interface from Webmin Inc. It is used for webmail, password change, mail filters, fetchmail, and more. A cross-site scripting vulnerability exists in Usermin version 2.000, which stems from a stored cross-site scripting XSS vulnerability in the MIME type program tab...

5.4CVSS5.8AI score0.00118EPSS

Exploits0References4

CNNVD•added 2023/09/13 12:0 a.m.•1 views

Usermin Cross-Site Scripting Vulnerability

Webmin Usermin is a web-based interface from Webmin Inc. It is used for webmail, password change, mail filters, fetchmail, and more. A cross-site scripting vulnerability exists in Usermin version 2.000, which originates from a stored cross-site scripting XSS vulnerability in the Mail Forwarding a...

5.4CVSS5.8AI score0.00118EPSS

Exploits0References4

CNVD•added 2023/08/31 12:0 a.m.•24 views

Webmin Usermin Cross-Site Scripting Vulnerability

Webmin Usermin is a web-based interface from Webmin Inc. Used for webmail, password change, mail filters, fetchmail and more. A cross-site scripting vulnerability exists in Webmin Usermin version 2.001. The vulnerability stems from the application's lack of effective filtering and escaping of...

5.4CVSS6.4AI score0.00142EPSS

Exploits0References1

CNNVD•added 2023/08/30 12:0 a.m.•2 views

Webmin Usermin 跨站脚本漏洞

Webmin Usermin is a web-based interface from Webmin Inc. It is used for webmail, password change, mail filters, fetchmail, and more. A security vulnerability in webmin Usermin version 2.000, which originates from a cross-site scripting XSS vulnerability in the File Manager tab, allows remote...

6.1CVSS6.2AI score0.00102EPSS

Exploits0References3

CNNVD•added 2023/08/29 12:0 a.m.•1 views

Webmin Usermin 跨站脚本漏洞

5.4CVSS6.5AI score0.00142EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by