Vulnerabilities > Webmin

DATE CVE VULNERABILITY TITLE RISK
2022-04-11 CVE-2021-32156 Cross-Site Request Forgery (CSRF) vulnerability in Webmin 1.973
A cross-site request forgery (CSRF) vulnerability exists in Webmin 1.973 via the Scheduled Cron Jobs feature.
network
webmin CWE-352
6.8
2022-04-11 CVE-2021-32157 Cross-site Scripting vulnerability in Webmin 1.973
A Cross-Site Scripting (XSS) vulnerability exists in Webmin 1.973 via the Scheduled Cron Jobs feature.
network
webmin CWE-79
6.8
2022-04-11 CVE-2021-32158 Cross-site Scripting vulnerability in Webmin 1.973
A Cross-Site Scripting (XSS) vulnerability exists in Webmin 1.973 via the Upload and Download feature.
network
webmin CWE-79
4.3
2022-04-11 CVE-2021-32159 Cross-Site Request Forgery (CSRF) vulnerability in Webmin 1.973
A Cross-site request forgery (CSRF) vulnerability exists in Webmin 1.973 via the Upload and Download feature.
network
webmin CWE-352
6.8
2022-04-11 CVE-2021-32160 Cross-site Scripting vulnerability in Webmin 1.973
A Cross-Site Scripting (XSS) vulnerability exists in Webmin 1.973 through the Add Users feature.
network
webmin CWE-79
4.3
2022-04-11 CVE-2021-32161 Cross-site Scripting vulnerability in Webmin 1.973
A Cross-Site Scripting (XSS) vulnerability exists in Webmin 1.973 through the File Manager feature.
network
webmin CWE-79
4.3
2022-04-11 CVE-2021-32162 Cross-Site Request Forgery (CSRF) vulnerability in Webmin 1.973
A Cross-site request forgery (CSRF) vulnerability exists in Webmin 1.973 through the File Manager feature.
network
webmin CWE-352
6.8
2022-03-02 CVE-2022-0824 Improper Access Control vulnerability in Webmin
Improper Access Control to Remote Code Execution in GitHub repository webmin/webmin prior to 1.990.
network
low complexity
webmin CWE-284
critical
9.0
2022-03-02 CVE-2022-0829 Improper Authorization vulnerability in Webmin
Improper Authorization in GitHub repository webmin/webmin prior to 1.990.
network
low complexity
webmin CWE-285
5.5
2021-04-25 CVE-2021-31762 Cross-Site Request Forgery (CSRF) vulnerability in Webmin 1.973
Webmin 1.973 is affected by Cross Site Request Forgery (CSRF) to create a privileged user through Webmin's add users feature, and then get a reverse shell through Webmin's running process feature.
network
webmin CWE-352
6.8