Vulnerabilities > Webmin

DATE	CVE	VULNERABILITY TITLE	RISK
2022-11-02	CVE-2022-3844	Cross-site Scripting vulnerability in Webmin 2.001 A vulnerability, which was classified as problematic, was found in Webmin 2.001. network low complexity webmin CWE-79	6.1
2022-10-25	CVE-2022-35132	OS Command Injection vulnerability in Webmin Usermin Usermin through 1.850 allows a remote authenticated user to execute OS commands via command injection in a filename for the GPG module. network low complexity webmin CWE-78	8.8
2022-07-27	CVE-2022-36880	Cross-site Scripting vulnerability in Webmin Usermin The Read Mail module in Webmin 1.995 and Usermin through 1.850 allows XSS via a crafted HTML e-mail message. network low complexity webmin CWE-79	6.1
2022-07-25	CVE-2022-36446	Improper Encoding or Escaping of Output vulnerability in Webmin software/apt-lib.pl in Webmin before 1.997 lacks HTML escaping for a UI command. network low complexity webmin CWE-116 critical	9.8
2022-05-15	CVE-2022-30708	Unspecified vulnerability in Webmin Webmin through 1.991, when the Authentic theme is used, allows remote code execution when a user has been manually created (i.e., not created in Virtualmin or Cloudmin). network low complexity webmin	8.8
2022-04-11	CVE-2021-32156	Cross-Site Request Forgery (CSRF) vulnerability in Webmin 1.973 A cross-site request forgery (CSRF) vulnerability exists in Webmin 1.973 via the Scheduled Cron Jobs feature. network low complexity webmin CWE-352	8.8
2022-04-11	CVE-2021-32157	Cross-site Scripting vulnerability in Webmin 1.973 A Cross-Site Scripting (XSS) vulnerability exists in Webmin 1.973 via the Scheduled Cron Jobs feature. network low complexity webmin CWE-79 critical	9.6
2022-04-11	CVE-2021-32158	Cross-site Scripting vulnerability in Webmin 1.973 A Cross-Site Scripting (XSS) vulnerability exists in Webmin 1.973 via the Upload and Download feature. network low complexity webmin CWE-79	6.1
2022-04-11	CVE-2021-32159	Cross-Site Request Forgery (CSRF) vulnerability in Webmin 1.973 A Cross-site request forgery (CSRF) vulnerability exists in Webmin 1.973 via the Upload and Download feature. network low complexity webmin CWE-352	8.8
2022-04-11	CVE-2021-32160	Cross-site Scripting vulnerability in Webmin 1.973 A Cross-Site Scripting (XSS) vulnerability exists in Webmin 1.973 through the Add Users feature. network low complexity webmin CWE-79	6.1

Vulnerabilities > Webmin {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Webmin"}]}

Vulnerabilities > Webmin