6 matches found
Gentoo Security Advisory GLSA 200707-05 (webmin/usermin)
The remote host is missing updates announced in advisory GLSA 200707-05. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200707-05 (webmin/usermin)
The remote host is missing updates announced in advisory GLSA 200707-05. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Webmin pam_login.cgis远程跨站脚本执行漏洞
BUGTRAQ ID: 24381 CVECAN ID: CVE-2007-3156 Webmin是一款基于WEB的Unix和Linux操作系统管理界面。 Webmin的pamlogin.cgi文件中存在多个跨站脚本漏洞,如果用户受骗访问了恶意网页的话,远程攻击者就可以通过cid、message或question参数向用户浏览器会话注入并执行任意脚本。 Webmin Webmin 1.340 Webmin Usermin 1.270 Webmin ------ 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
[ MDKSA-2007:135 ] - Updated webmin packages fix XSS vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDKSA-2007:135 http://www.mandriva.com/security/ Package : webmin Date : June 23, 2007 Affected: 2007.0, 2007.1, Corporate 4.0 Problem Description: Multiple cross-site scripting XSS vulnerabilities were discovered in...
FreeBSD : webmin -- XSS vulnerability (12b7286f-16a2-11dc-b803-0016179b2dd5)
Secunia reports : Input passed to unspecified parameters in pamlogin.cgi is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. %NASLMINLEVEL 70300 C Tenable Network...
CVE-2007-3156
Webmin pam_login.cgi contains multiple XSS vulnerabilities (CVE-2007-3156) that allow remote attackers to inject arbitrary scripts if a user visits a crafted page. Affected are Webmin prior to 1.350 and Usermin prior to 1.280, where inputs in cid, message, or question are not properly sanitized. ...