3 matches found
CVE-2023-38305
An issue was discovered in Webmin 2.021. The download functionality allows an attacker to exploit a Cross-Site Scripting XSS vulnerability. By providing a crafted download path containing a malicious payload, an attacker can inject arbitrary code, which is then executed within the context of the...
CVE-2023-38305
An issue was discovered in Webmin 2.021. The download functionality allows an attacker to exploit a Cross-Site Scripting XSS vulnerability. By providing a crafted download path containing a malicious payload, an attacker can inject arbitrary code, which is then executed within the context of the...
CVE-2023-38305
Webmin 2.021 contains a Cross‑Site Scripting (XSS) vulnerability in the download functionality. By providing a crafted download path with a malicious payload, an attacker can inject arbitrary code that executes in the victim’s browser when the download link is accessed. Adjacent sources (Red Hat,...