Show filters
5 Total Results
Displaying 1-5 of 5
Sort by:
Attacker Value
Unknown
CVE-2014-3884
Disclosure Date: July 20, 2014 (last updated October 05, 2023)
Cross-site scripting (XSS) vulnerability in Usermin before 1.600 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this might overlap CVE-2014-3924.
0
Attacker Value
Unknown
CVE-2014-3883
Disclosure Date: June 21, 2014 (last updated October 05, 2023)
Usermin before 1.600 allows remote attackers to execute arbitrary operating-system commands via unspecified vectors related to a user action.
0
Attacker Value
Unknown
CVE-2009-4568
Disclosure Date: January 05, 2010 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in Webmin before 1.500 and Usermin before 1.430 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
0
Attacker Value
Unknown
CVE-2007-1276
Disclosure Date: March 05, 2007 (last updated October 04, 2023)
Multiple cross-site scripting (XSS) vulnerabilities in chooser.cgi in Webmin before 1.330 and Usermin before 1.260 allow remote attackers to inject arbitrary web script or HTML via a crafted filename.
0
Attacker Value
Unknown
CVE-2006-4542
Disclosure Date: September 05, 2006 (last updated October 04, 2023)
Webmin before 1.296 and Usermin before 1.226 do not properly handle a URL with a null ("%00") character, which allows remote attackers to conduct cross-site scripting (XSS), read CGI program source code, list directories, and possibly execute programs.
0
