Lucene search
K

6 matches found

OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.19 views

Gentoo Security Advisory GLSA 200707-05 (webmin/usermin)

The remote host is missing updates announced in advisory GLSA 200707-05. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

4.3CVSS0.2AI score0.01569EPSS
Exploits1
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.13 views

Gentoo Security Advisory GLSA 200707-05 (webmin/usermin)

The remote host is missing updates announced in advisory GLSA 200707-05. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.7AI score0.01569EPSS
Exploits1References2
seebug.org
seebug.org
added 2007/07/10 12:0 a.m.49 views

Webmin pam_login.cgis远程跨站脚本执行漏洞

BUGTRAQ ID: 24381 CVECAN ID: CVE-2007-3156 Webmin是一款基于WEB的Unix和Linux操作系统管理界面。 Webmin的pamlogin.cgi文件中存在多个跨站脚本漏洞,如果用户受骗访问了恶意网页的话,远程攻击者就可以通过cid、message或question参数向用户浏览器会话注入并执行任意脚本。 Webmin Webmin 1.340 Webmin Usermin 1.270 Webmin ------ 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...

4.3CVSS6.2AI score0.01569EPSS
Exploits1
securityvulns
securityvulns
added 2007/06/24 12:0 a.m.58 views

[ MDKSA-2007:135 ] - Updated webmin packages fix XSS vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDKSA-2007:135 http://www.mandriva.com/security/ Package : webmin Date : June 23, 2007 Affected: 2007.0, 2007.1, Corporate 4.0 Problem Description: Multiple cross-site scripting XSS vulnerabilities were discovered in...

4.3CVSS6.1AI score0.01569EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2007/06/12 12:0 a.m.24 views

FreeBSD : webmin -- XSS vulnerability (12b7286f-16a2-11dc-b803-0016179b2dd5)

Secunia reports : Input passed to unspecified parameters in pamlogin.cgi is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. %NASLMINLEVEL 70300 C Tenable Network...

4.3CVSS5.9AI score0.01569EPSS
Exploits1References3
CVE
CVE
added 2007/06/11 10:0 p.m.69 views

CVE-2007-3156

Webmin pam_login.cgi contains multiple XSS vulnerabilities (CVE-2007-3156) that allow remote attackers to inject arbitrary scripts if a user visits a crafted page. Affected are Webmin prior to 1.350 and Usermin prior to 1.280, where inputs in cid, message, or question are not properly sanitized. ...

4.3CVSS5.5AI score0.01569EPSS
Exploits1References10Affected Software2
Rows per page
Query Builder