Lucene search
K

380 matches found

NVD
NVD
added 2023/09/14 9:15 p.m.24 views

CVE-2023-41159

A Stored Cross-Site Scripting XSS vulnerability while editing the autoreply file page in Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML by editing the forward file manually...

5.4CVSS5.2AI score0.00421EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/09/14 9:15 p.m.5 views

CVE-2023-41159

A Stored Cross-Site Scripting XSS vulnerability while editing the autoreply file page in Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML by editing the forward file manually...

5.4CVSS5.9AI score0.00421EPSS
Exploits0References3
Prion
Prion
added 2023/09/14 9:15 p.m.18 views

Cross site scripting

A Stored Cross-Site Scripting XSS vulnerability in the SSH configuration tab in Usermin 2.001 allows remote attackers to inject arbitrary web script or HTML via the key name field while adding an authorized key...

4.9CVSS5.2AI score0.00475EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2023/09/14 9:15 p.m.21 views

Cross site scripting

A Stored Cross-Site Scripting XSS vulnerability while editing the autoreply file page in Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML by editing the forward file manually...

4.9CVSS5.2AI score0.00421EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/09/14 9:15 p.m.16 views

Cross site scripting

A Stored Cross-Site Scripting XSS vulnerability in the filter and forward mail tab in Usermin 2.001 allows remote attackers to inject arbitrary web script or HTML via the save to new folder named field while creating a new filter...

4.9CVSS5.2AI score0.00421EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/09/14 12:0 a.m.5 views

PT-2023-27733 · Webmin · Webmin

Name of the Vulnerable Software and Affected Versions: Webmin version 2.100 Description: A stored cross-site scripting XSS vulnerability in the Usermin Configuration function allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Custom field...

5.4CVSS5.3AI score0.00408EPSS
Exploits1References6
Cvelist
Cvelist
added 2023/09/14 12:0 a.m.44 views

CVE-2023-41160

A Stored Cross-Site Scripting XSS vulnerability in the SSH configuration tab in Usermin 2.001 allows remote attackers to inject arbitrary web script or HTML via the key name field while adding an authorized key...

5.4AI score0.00475EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/09/14 12:0 a.m.5 views

PT-2023-27836 · Usermin · Usermin

Name of the Vulnerable Software and Affected Versions: Usermin version 2.001 Description: A Stored Cross-Site Scripting XSS vulnerability in the SSH configuration tab allows remote attackers to inject arbitrary web script or HTML via the key name field while adding an authorized key...

5.4CVSS5.4AI score0.00475EPSS
Exploits1References6
CNNVD
CNNVD
added 2023/09/14 12:0 a.m.6 views

Usermin Cross-Site Scripting Vulnerability

Webmin Usermin is a web-based interface from Webmin Inc. It is used for webmail, password change, mail filters, fetchmail, and more. A cross-site scripting vulnerability exists in Usermin version 2.001, which originates from a security issue in the configuration tab and allows remote attackers to...

5.4CVSS5.9AI score0.00475EPSS
Exploits1References4
Cvelist
Cvelist
added 2023/09/14 12:0 a.m.35 views

CVE-2023-41156

A Stored Cross-Site Scripting XSS vulnerability in the filter and forward mail tab in Usermin 2.001 allows remote attackers to inject arbitrary web script or HTML via the save to new folder named field while creating a new filter...

5.4AI score0.00421EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/09/14 12:0 a.m.4 views

Usermin Cross-Site Scripting Vulnerability

Webmin Usermin is a web-based interface from Webmin Inc. It is used for webmail, password change, mail filters, fetchmail, and more. A cross-site scripting vulnerability exists in Usermin version 2.001, which arises from a security issue when editing the autoreply file page and allows remote...

5.4CVSS5.8AI score0.00421EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2023/09/14 12:0 a.m.13 views

CVE-2023-41159

A Stored Cross-Site Scripting XSS vulnerability while editing the autoreply file page in Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML by editing the forward file manually...

5.5AI score0.00421EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/09/14 12:0 a.m.19 views

CVE-2023-41160

A Stored Cross-Site Scripting XSS vulnerability in the SSH configuration tab in Usermin 2.001 allows remote attackers to inject arbitrary web script or HTML via the key name field while adding an authorized key...

5.5AI score0.00475EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/09/14 12:0 a.m.4 views

PT-2023-27831 · Usermin · Usermin

Name of the Vulnerable Software and Affected Versions: Usermin version 2.001 Description: A Stored Cross-Site Scripting XSS issue in the filter and forward mail tab allows remote attackers to inject arbitrary web script or HTML via the save to new folder named field while creating a new filter...

5.4CVSS5.4AI score0.00421EPSS
Exploits0References6
CVE
CVE
added 2023/09/14 12:0 a.m.103 views

CVE-2023-41156

Usermin 2.001 has a Stored Cross-Site Scripting (XSS) vulnerability in the filter and forward mail tab, allowing remote attackers to inject arbitrary script/HTML via the "save to new folder named" field when creating a new filter. Root cause: unsanitized input on that field. Description is corrob...

5.4CVSS5.2AI score0.00421EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2023/09/14 12:0 a.m.122 views

CVE-2023-41160

CVE-2023-41160 describes a stored XSS in the SSH configuration tab of Usermin 2.001 caused by injecting scripts or HTML through the key name field when adding an authorized key. The vulnerability is confirmed across multiple sources (NVD, Red Hat, CVE list, CNNSA-like feeds) with CVSSv3.1 base me...

5.4CVSS5.2AI score0.00475EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2023/09/14 12:0 a.m.44 views

CVE-2023-41159

The CVE-2023-41159 entry describes a Stored Cross‑Site Scripting (XSS) in Webmin/Usermin 2.000, triggered when editing the autoreply/forward file (manually editing the forwarding file). The root cause is an XSS vulnerability in the autoreply/forward file editing flow, enabling an attacker to inje...

5.4CVSS5.2AI score0.00421EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/09/14 12:0 a.m.4 views

Usermin Cross-Site Scripting Vulnerability

Webmin Usermin is a web-based interface from Webmin Inc. It is used for webmail, password change, mail filters, fetchmail and more. A cross-site scripting vulnerability exists in Usermin version 2.001, which originates from a security issue within the filter, forward mail tab, that allows remote...

5.4CVSS5.8AI score0.00421EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/09/14 12:0 a.m.23 views

CVE-2023-41159

A Stored Cross-Site Scripting XSS vulnerability while editing the autoreply file page in Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML by editing the forward file manually...

5.4AI score0.00421EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/09/14 12:0 a.m.12 views

CVE-2023-41156

A Stored Cross-Site Scripting XSS vulnerability in the filter and forward mail tab in Usermin 2.001 allows remote attackers to inject arbitrary web script or HTML via the save to new folder named field while creating a new filter...

5.5AI score0.00421EPSS
Exploits0References2
Rows per page
Query Builder