CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-41159

A Stored Cross-Site Scripting (XSS) vulnerability while editing the autoreply file page in Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML by editing the forward file manually.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.7%

CVSS Severity

CVSS v3 Score 5.4

References

https://github.com/shindeanik/Usermin-2.000/blob/main/CVE-2023-41159
https://webmin.com/tags/webmin-changelog/
https://github.com/shindeanik/Usermin-2.000/blob/main/CVE-2023-41159
https://webmin.com/tags/webmin-changelog/

Products affected by CVE-2023-41159

Webmin » Usermin » Version: 2.000

cpe:2.3:a:webmin:usermin:2.000

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-41159

Products

Pricing

Contact Us