Cross-Site Scripting Vulnerability in Webmin and Usermin
CVE-2009-4568

Currently unrated

Key Information:

Vendor: Webmin
Status: Usermin; Webmin
Vendor: CVE Published:; 5 January 2010

What is CVE-2009-4568?

A cross-site scripting vulnerability exists in Webmin before version 1.500 and Usermin before version 1.430, allowing remote attackers to inject arbitrary web scripts or HTML through unspecified vectors. This can lead to various malicious actions such as data theft, session hijacking, or unauthorized access, making it imperative for users to update to the latest versions to mitigate these risks.

References

http://www.webmin.com/security.html

x_refsource_CONFIRM

http://www.securityfocus.com/bid/37259

vdb-entryx_refsource_BID

http://www.mandriva.com/security/advisories?name=MDVSA-20...

vendor-advisoryx_refsource_MANDRIVA

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 5, 2010
Vulnerability Reserved
Jan 5, 2010