We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
An issue was discovered in Webmin 2.021. A Cross-site Scripting (XSS) Bypass vulnerability was discovered in the file upload functionality. Normally, the application restricts the upload of certain file types such as .svg, .php, etc., and displays an error message if a prohibited file type is detected. However, by following certain steps, an attacker can bypass these restrictions and inject malicious code.
Reserved 2023-07-14 | Published 2023-07-31 | Updated 2024-10-22 | Assigner mitrewebmin.com/tags/webmin-changelog/
github.com/...harma786/Webmin-2.021/blob/main/CVE-2023-38306
Support options