2 matches found
CVE-2023-38304
An issue was discovered in Webmin 2.021. A Stored Cross-Site Scripting XSS vulnerability was discovered in the Users and Groups functionality, allowing an attacker to store a malicious payload in the Group Name field when creating a new group...
CVE-2023-38304
Webmin 2.021 has a Stored XSS in the Users and Groups functionality, enabling a malicious payload to be stored in the Group Name field when creating a new group. The issue is documented across multiple sources (including PT-2023-4161 and CVE-2023-38304) with a CVSSv3.1 base score of 5.4 (Medium)....