CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-19191

Webmin 1.890 has XSS via /config.cgi?webmin, the /shell/index.cgi history parameter, /shell/index.cgi?stripped=1, or the /webminlog/search.cgi uall or mall parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.018

EPSS Ranking 81.5%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

http://packetstormsecurity.com/files/151144/Webmin-1.890-Cross-Site-Scripting.html
http://www.webmin.com/index.html
http://packetstormsecurity.com/files/151144/Webmin-1.890-Cross-Site-Scripting.html
http://www.webmin.com/index.html

Products affected by CVE-2018-19191

Webmin » Webmin » Version: 1.890

cpe:2.3:a:webmin:webmin:1.890

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-19191

Products

Pricing

Contact Us