2 matches found
CVE-2023-47099
A Stored Cross-Site Scripting XSS vulnerability in the Create Virtual Server in Virtualmin 7.7 allows remote attackers to inject arbitrary web script or HTML via Description field while creating the Virtual server...
CVE-2023-47099
CVE-2023-47099 is a stored XSS in Virtualmin’s Create Virtual Server feature affecting Virtualmin 7.7. The vulnerability stems from insufficient sanitization of the Description field during Virtual Server creation, allowing remote attackers to inject arbitrary script/HTML. Impact is XSS in the se...