[Forgot Password]
Login  Register Subscribe

23631

 
 

126951

 
 

99536

 
 

909

 
 

80128

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2017-17089

Date: (C)2018-01-02   (M)2018-01-05 


custom/run.cgi in Webmin before 1.870 allows remote authenticated administrators to conduct XSS attacks via the description field in the custom command functionality.

CVSS Score: 5.0Access Vector:
Exploit Score: Access Complexity:
Impact Score: Authentication:
 Confidentiality:
 Integrity:
 Availability:





Reference:
BID-102339
https://github.com/webmin/webmin/commit/a9c97eea6c268fb83d93a817d58bac75e0d2599e

© 2013 SecPod Technologies