Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in Webmin 1.370 and 1.390 and Usermin 1.300 and 1.320 allows remote attackers to inject arbitrary web script or HTML via the search parameter to webmin_search.cgi (aka the search section), and possibly other components accessed through a "search box" or "open file box." NOTE: some of these details are obtained from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
WEBmin WEBmin_search.CGI 跨站脚本攻击漏洞
Vulnerability Description
WEBmin和Usermin存在跨站脚本攻击漏洞。远程攻击者可以通过WEBmin_search.CGI的search参数(例如搜索操作)或者其他可以通过搜索对话框(search box) 或者 打开文件对话框(open file box )访问的可能组件来注入任意WEB脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A