Описание
An XSS Vulnerability exists in Webmin 1.941 and earlier affecting the Cluster Shell Commands Endpoint. A user may enter any XSS Payload into the Command field and execute it. Then, after revisiting the Cluster Shell Commands Menu, the XSS Payload will be rendered and executed.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.941 (включая)
cpe:2.3:a:webmin:webmin:*:*:*:*:*:*:*:*
EPSS
Процентиль: 56%
0.00343
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 5.4
debian
больше 5 лет назад
An XSS Vulnerability exists in Webmin 1.941 and earlier affecting the ...
github
больше 3 лет назад
An XSS Vulnerability exists in Webmin 1.941 and earlier affecting the Cluster Shell Commands Endpoint. A user may enter any XSS Payload into the Command field and execute it. Then, after revisiting the Cluster Shell Commands Menu, the XSS Payload will be rendered and executed.
EPSS
Процентиль: 56%
0.00343
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79