Usermin Security Vulnerabilities and Issues — Usermin CVE List

Lucene search

WebminUsermin

5 matches found

CVE•added 2022/07/27 4:15 a.m.•63 views

CVE-2022-36880

The Read Mail module in Webmin 1.995 and Usermin through 1.850 allows XSS via a crafted HTML e-mail message.

6.1CVSS5.7AI score0.00408EPSS

CVE•added 2024/07/10 7:15 a.m.•56 views

CVE-2024-36453

Cross-site scripting vulnerability exists in session_login.cgi of Webmin versions prior to 1.970 and Usermin versions prior to 1.820. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who accessed the website using the product. As a result, a web...

6.1CVSS6.2AI score0.00098EPSS

CVE•added 2014/06/21 3:55 p.m.•51 views

CVE-2014-3883

Usermin before 1.600 allows remote attackers to execute arbitrary operating-system commands via unspecified vectors related to a user action.

6.8CVSS7.7AI score0.00517EPSS

CVE•added 2017/04/12 10:59 p.m.•42 views

CVE-2016-4897

Multiple cross-site scripting (XSS) vulnerabilities in (1) filter/save_forward.cgi, (2) filter/save.cgi, (3) /man/search.cgi in Usermin before 1.690.

6.1CVSS6.1AI score0.00285EPSS

CVE•added 2023/09/13 10:15 p.m.•32 views

CVE-2023-41162

A Reflected Cross-site scripting (XSS) vulnerability in the file manager tab in Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML via the file mask field while searching under the tools drop down.

6.1CVSS6AI score0.00094EPSS