Vulnerabilities > Webmin > Webmin > 1.973
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-01-25 | CVE-2023-52046 | Cross-site Scripting vulnerability in Webmin Cross Site Scripting vulnerability (XSS) in webmin v.2.105 and earlier allows a remote attacker to execute arbitrary code via a crafted payload to the "Execute cron job as" tab Input field. | 4.8 |
2023-09-21 | CVE-2023-43309 | Cross-site Scripting vulnerability in Webmin There is a stored cross-site scripting (XSS) vulnerability in Webmin 2.002 and below via the Cluster Cron Job tab Input field, which allows attackers to run malicious scripts by injecting a specially crafted payload. | 4.8 |
2022-07-25 | CVE-2022-36446 | Improper Encoding or Escaping of Output vulnerability in Webmin software/apt-lib.pl in Webmin before 1.997 lacks HTML escaping for a UI command. | 9.8 |
2022-05-15 | CVE-2022-30708 | Unspecified vulnerability in Webmin Webmin through 1.991, when the Authentic theme is used, allows remote code execution when a user has been manually created (i.e., not created in Virtualmin or Cloudmin). | 6.5 |
2022-04-11 | CVE-2021-32156 | Cross-Site Request Forgery (CSRF) vulnerability in Webmin 1.973 A cross-site request forgery (CSRF) vulnerability exists in Webmin 1.973 via the Scheduled Cron Jobs feature. | 6.8 |
2022-04-11 | CVE-2021-32157 | Cross-site Scripting vulnerability in Webmin 1.973 A Cross-Site Scripting (XSS) vulnerability exists in Webmin 1.973 via the Scheduled Cron Jobs feature. | 6.8 |
2022-04-11 | CVE-2021-32158 | Cross-site Scripting vulnerability in Webmin 1.973 A Cross-Site Scripting (XSS) vulnerability exists in Webmin 1.973 via the Upload and Download feature. | 4.3 |
2022-04-11 | CVE-2021-32159 | Cross-Site Request Forgery (CSRF) vulnerability in Webmin 1.973 A Cross-site request forgery (CSRF) vulnerability exists in Webmin 1.973 via the Upload and Download feature. | 6.8 |
2022-04-11 | CVE-2021-32160 | Cross-site Scripting vulnerability in Webmin 1.973 A Cross-Site Scripting (XSS) vulnerability exists in Webmin 1.973 through the Add Users feature. | 4.3 |
2022-04-11 | CVE-2021-32161 | Cross-site Scripting vulnerability in Webmin 1.973 A Cross-Site Scripting (XSS) vulnerability exists in Webmin 1.973 through the File Manager feature. | 4.3 |