Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:40 a.m.5 views

CVE-2001-1530

run.cgi in Webmin 0.80 and 0.88 creates temporary files with world-writable permissions, which allows local users to execute arbitrary commands...

4.6CVSS7.4AI score0.004EPSS
Exploits0References1
NVD
NVD
added 2018/03/14 7:29 p.m.22 views

CVE-2018-8712

An issue was discovered in Webmin 1.840 and 1.880 when the default Yes setting of "Can view any file as a log file" is enabled. As a result of weak default configuration settings, limited users have full access rights to the underlying Unix system files, allowing the user to read sensitive data...

9.8CVSS8.9AI score0.01828EPSS
Exploits0References1
Gentoo Linux
Gentoo Linux
added 2005/02/11 12:0 a.m.38 views

Webmin: Information leak in Gentoo binary package

Background Webmin is a web-based system administration console allowing an administrator to easily configure servers and other features. Using the 'buildpkg' FEATURE, or the -b/-B emerge options, Portage can build reusable binary packages for any of the packages available through the Portage tree...

5CVSS6.3AI score0.02204EPSS
Exploits0
Cvelist
Cvelist
added 2002/06/25 4:0 a.m.22 views

CVE-2001-1074

Webmin 0.84 and earlier does not properly clear the HTTPAUTHORIZATION environment variable when the web server is restarted, which makes authentication information available to all CGI programs and allows local users to gain privileges...

6.5AI score0.00514EPSS
Exploits1References5
Cvelist
Cvelist
added 2002/03/09 5:0 a.m.19 views

CVE-1999-1074

Webmin before 0.5 does not restrict the number of invalid passwords that are entered for a valid username, which could allow remote attackers to gain privileges via brute force password cracking...

7.1AI score0.01571EPSS
Exploits0References3
Rows per page
Query Builder