The Printer Administration module for Webmin 0.990 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the printer name.
CVSS Score
10.0
EPSS Score
0.019
Published
2002-12-31
Webmin 0.84 and earlier does not properly clear the HTTP_AUTHORIZATION environment variable when the web server is restarted, which makes authentication information available to all CGI programs and allows local users to gain privileges.
CVSS Score
7.2
EPSS Score
0.001
Published
2001-05-28
Page 5