Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2024/07/10 7:1 a.m.25 views

CVE-2024-36451

Improper handling of insufficient permissions or privileges vulnerability exists in ajaxterm module of Webmin prior to 2.003. If this vulnerability is exploited, a console session may be hijacked by an unauthorized user. As a result, data within a system may be referred, a webpage may be altered,...

6.8AI score0.00569EPSS
Exploits0References2
CVE
CVE
added 2024/07/10 7:1 a.m.70 views

CVE-2024-36451

CVE-2024-36451 affects the Webmin ajaxterm module. Multiple sources (NVD, Red Hat, OSV, JVN) describe an improper handling of insufficient permissions or privileges that could allow an unauthorized user to hijack a console session, potentially exposing data, altering webpages, or causing a server...

8.8CVSS6.8AI score0.00569EPSS
Exploits0References2Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2024/07/09 5:27 a.m.4 views

Multiple vulnerabilities in multiple Webmin products

Overview Multiple Webmin products contain multiple vulnerabilities listed below. sysinfo.cgi is vulnerable to cross-site scripting CWE-79 CVE-2024-36450 sessionlogin.cgi is vulnerable to cross-site scripting CWE-79 CVE-2024-36453 ajaxterm module is vulnerable to improper handling of insufficient...

8.8CVSS6.3AI score0.00569EPSS
Exploits0References10
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2024/07/09 12:0 a.m.62 views

JVN#81442045: Multiple vulnerabilities in multiple Webmin products

Multiple Webmin products contain multiple vulnerabilities listed below. sysinfo.cgi is vulnerable to cross-site scripting CWE-79 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Base Score 6.1 CVE-2024-36450 sessionlogin.cgi is vulnerable to cross-site scripting CWE-79...

8.8CVSS6.6AI score0.00569EPSS
Exploits0
Rows per page
Query Builder