CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-38311

An issue was discovered in Webmin 2.021. A Stored Cross-Site Scripting (XSS) vulnerability was discovered in the System Logs Viewer functionality. The vulnerability allows an attacker to store a malicious payload in the configuration field, triggering the execution of the payload when saving the configuration or when accessing the System Logs Viewer page.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 33.3%

CVSS Severity

CVSS v3 Score 5.4

References

https://github.com/jaysharma786/Webmin-2.021/blob/main/CVE-2023-38311
https://webmin.com/tags/webmin-changelog/
https://github.com/jaysharma786/Webmin-2.021/blob/main/CVE-2023-38311
https://webmin.com/tags/webmin-changelog/

Products affected by CVE-2023-38311

Webmin » Webmin » Version: 2.021

cpe:2.3:a:webmin:webmin:2.021

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-38311

Products

Pricing

Contact Us