4 matches found
CVE-2024-36451
Improper handling of insufficient permissions or privileges vulnerability exists in ajaxterm module of Webmin prior to 2.003. If this vulnerability is exploited, a console session may be hijacked by an unauthorized user. As a result, data within a system may be referred, a webpage may be altered,...
CVE-2024-36451
CVE-2024-36451 affects the Webmin ajaxterm module. Multiple sources (NVD, Red Hat, OSV, JVN) describe an improper handling of insufficient permissions or privileges that could allow an unauthorized user to hijack a console session, potentially exposing data, altering webpages, or causing a server...
Multiple vulnerabilities in multiple Webmin products
Overview Multiple Webmin products contain multiple vulnerabilities listed below. sysinfo.cgi is vulnerable to cross-site scripting CWE-79 CVE-2024-36450 sessionlogin.cgi is vulnerable to cross-site scripting CWE-79 CVE-2024-36453 ajaxterm module is vulnerable to improper handling of insufficient...
JVN#81442045: Multiple vulnerabilities in multiple Webmin products
Multiple Webmin products contain multiple vulnerabilities listed below. sysinfo.cgi is vulnerable to cross-site scripting CWE-79 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Base Score 6.1 CVE-2024-36450 sessionlogin.cgi is vulnerable to cross-site scripting CWE-79...