Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
custom/run.cgi in Webmin before 1.870 allows remote authenticated administrators to conduct XSS attacks via the description field in the custom command functionality.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Webmin 跨站脚本漏洞
Vulnerability Description
Webmin是澳大利亚软件开发者Jamie Cameron和Webmin社区共同开发的一套基于Web的用于类Unix操作系统中的系统管理工具。 Webmin 1.870之前版本中存在跨站脚本漏洞,该漏洞源于程序没有过滤用户提交的输入。远程攻击者可借助description字段利用该漏在浏览器中执行任意的脚本代码。
CVSS Information
N/A
Vulnerability Type
N/A