Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2023-40983 |
|
Cross-Site Scripting (XSS) in webmin (CVE-2023-40983)
cross-site scripting in webmin (CVE-2023-40983). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-40982 |
|
Cross-Site Scripting (XSS) in webmin (CVE-2023-40982)
cross-site scripting in webmin (CVE-2023-40982). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-40984 |
|
Cross-Site Scripting (XSS) in webmin (CVE-2023-40984)
cross-site scripting in webmin (CVE-2023-40984). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-40985 |
|
Cross-Site Scripting (XSS) in webmin (CVE-2023-40985)
cross-site scripting in webmin (CVE-2023-40985). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-40986 |
|
Cross-Site Scripting (XSS) in webmin (CVE-2023-40986)
cross-site scripting in webmin (CVE-2023-40986). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-15107 KEV |
|
[KEV] OS Command Injection in webmin (CVE-2019-15107)
OS command injection in webmin (CVE-2019-15107). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-17089 |
|
Cross-Site Scripting (XSS) in webmin (CVE-2017-17089)
cross-site scripting in webmin (CVE-2017-17089). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15644 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2017-15644)
SSRF in ssrf (CVE-2017-15644). Confidential information can be exposed externally.
|
| CVE-2017-15645 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-15645)
vulnerability in csrf (CVE-2017-15645). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15646 |
|
Cross-Site Scripting (XSS) in webmin (CVE-2017-15646)
cross-site scripting in webmin (CVE-2017-15646). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9313 |
|
Cross-Site Scripting (XSS) in webmin (CVE-2017-9313)
cross-site scripting in webmin (CVE-2017-9313). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.840` or later.
|
| CVE-2017-2106 |
|
Cross-Site Scripting (XSS) in webmin (CVE-2017-2106)
cross-site scripting in webmin (CVE-2017-2106). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-4897 |
|
Cross-Site Scripting (XSS) in webmin (CVE-2016-4897)
cross-site scripting in webmin (CVE-2016-4897). Risk of unauthorized operations or information disclosure.
|