Lucene search
K

9 matches found

GithubExploit
GithubExploit
added 2026/04/08 8:58 p.m.191 views

Exploit for OS Command Injection in Webmin

CVE-2019-15107 - Webmin Unauthenticated RCE Description T...

10CVSS7.8AI score0.99766EPSS
Exploits37
Redos
Redos
added 2025/11/05 12:0 a.m.3 views

ROS-20251105-05

Vulnerability of passwordchange.cgi script of Webmin hosting control panel and web-interface for unix-like systems Usermin is related to flaws in error reporting mechanism. unix-like systems Usermin is related to a flaw in the error reporting mechanism. Exploitation of the vulnerability could all...

5.3CVSS6.9AI score0.02499EPSS
Exploits5
BDU FSTEC
BDU FSTEC
added 2024/10/30 12:0 a.m.4 views

The vulnerability of the password_change.cgi web interface for Unix-like systems, Usermin, allows a perpetrator to execute an attack using brute-force methods.

The vulnerability of the passwordchange.cgi script in the Webmin hosting panel and the web interface for Unix-like systems, Usermin, is related to deficiencies in the error reporting mechanism. Exploiting this vulnerability allows a malicious actor to execute an attack using brute-force methods...

5.3CVSS5.6AI score0.02499EPSS
Exploits5References6Affected Software2
Saint
Saint
added 2019/08/26 12:0 a.m.115 views

Webmin password_change.cgi backdoor

Added: 08/26/2019 Background Webmin is a web-based interface for system administration of Unix systems. The Webmin web server listens by default on port 10000/tcp. Problem A backdoor in Webmin allows a remote attacker to execute arbitrary commands by sending a POST request for passwordchange.cgi...

1.3AI score
Exploits0
Saint
Saint
added 2019/08/26 12:0 a.m.175 views

Webmin password_change.cgi backdoor

Added: 08/26/2019 Background Webmin is a web-based interface for system administration of Unix systems. The Webmin web server listens by default on port 10000/tcp. Problem A backdoor in Webmin allows a remote attacker to execute arbitrary commands by sending a POST request for passwordchange.cgi...

8.3AI score
Exploits0
Saint
Saint
added 2019/08/26 12:0 a.m.28 views

Webmin password_change.cgi backdoor

Added: 08/26/2019 Background Webmin is a web-based interface for system administration of Unix systems. The Webmin web server listens by default on port 10000/tcp. Problem A backdoor in Webmin allows a remote attacker to execute arbitrary commands by sending a POST request for passwordchange.cgi...

8.3AI score
Exploits0
NVD
NVD
added 2019/08/16 3:15 a.m.12 views

CVE-2019-15107

An issue was discovered in Webmin =1.920. The parameter old in passwordchange.cgi contains a command injection vulnerability...

10CVSS9.7AI score0.99766EPSS
Exploits37References9
ATTACKERKB
ATTACKERKB
added 2019/08/16 12:0 a.m.69 views

Webmin password_change.cgi Command Injection

An issue was discovered in Webmin =1.920. The parameter old in passwordchange.cgi contains a command injection vulnerability. Recent assessments: wvu-r7 at August 21, 2019 3:12am UTC reported: This was a supply chain attack: http://www.webmin.com/exploit.html. The backdoor was introduced in a...

10CVSS9.6AI score0.99766EPSS
In wildExploits37References11
ATTACKERKB
ATTACKERKB
added 2019/08/16 12:0 a.m.41 views

CVE-2019-15107

An issue was discovered in Webmin =1.920. The parameter old in passwordchange.cgi contains a command injection vulnerability. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

10CVSS9.6AI score0.99766EPSS
In wildExploits37References9
Rows per page
Query Builder