Stored Cross-Site Scripting Vulnerability in Usermin by Virtualmin
CVE-2023-41158
5.4MEDIUM
What is CVE-2023-41158?
A Stored Cross-Site Scripting (XSS) vulnerability exists in the MIME type programs section of Usermin 2.000. This flaw enables remote attackers to inject arbitrary web scripts or HTML via the description field when creating a new MIME type program. Exploiting this vulnerability can result in unauthorized access and manipulation of user data, highlighting the necessity for prompt security measures.