chfn

XSS in Webmin 1.540 + exploit for privilege escalation (CVE-2011-1937)

By Javier on 2011-04-24

Information
——————–
Name : XSS vulnerability in Webmin
Software : All versions prior to and including 1.540 are affected.
Vendor Hompeage : http://www.webmin.com
Vulnerability Type : Cross-Site Scripting
IDs: CVE-2011-1937 BID-47558
Severity : Medium
Researcher : Javier Bassi <javierbassi [at] gmail [dot] com>
[...]

Posted in Advisories, GNU/Linux | Tagged chfn, exploit, webmin, xss | 10 Responses