AI Score
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
A Stored Cross-Site Scripting (XSS) vulnerability in the filter and forward mail tab in Usermin 2.001 allows remote attackers to inject arbitrary web script or HTML via the save to new folder named field while creating a new filter.
github.com/shindeanik/Usermin-2.001/blob/main/CVE-2023-41156
webmin.com/tags/webmin-changelog/