Vulnerabilities > Webmin > Webmin > 1.010
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-05-31 | CVE-2011-1937 | Cross-Site Scripting vulnerability in Webmin Cross-site scripting (XSS) vulnerability in Webmin 1.540 and earlier allows local users to inject arbitrary web script or HTML via a chfn command that changes the real (aka Full Name) field, related to useradmin/index.cgi and useradmin/user-lib.pl. | 4.3 |