Lucene search

MitreVULNRICHMENT:CVE-2023-41152

HistorySep 13, 2023 - 12:00 a.m.

CVE-2023-41152

2023-09-1300:00:00

mitre

github.com

cross-site scripting

usermin

mime type

AI Score

5.5

Confidence

High

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

A Stored Cross-Site Scripting (XSS) vulnerability in the MIME type programs tab in Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML via the handle program field while creating a new MIME type program.

References

github.com/shindeanik/Usermin-2.000/blob/main/CVE-2023-41152

webmin.com/tags/webmin-changelog/