CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Webmin: >> Webmin >> 0.91 Security Vulnerabilities

CVE-2002-0757

(1) Webmin 0.96 and (2) Usermin 0.90 with password timeouts enabled allow local and possibly remote attackers to bypass authentication and gain privileges via certain control characters in the authentication information, which can force Webmin or Usermin to accept arbitrary username/session ID combinations.

CVSS Score

7.5

EPSS Score

0.006

Published

2002-08-12

CVE-2001-1196

Directory traversal vulnerability in edit_action.cgi of Webmin Directory 0.91 allows attackers to gain privileges via a '..' (dot dot) in the argument.

CVSS Score

10.0

EPSS Score

0.039

Published

2001-12-17

Page 5

Vulnerabilities

Vulnerable Software

Webmin: >> Webmin >> 0.91 Security Vulnerabilities

Products

Pricing

Contact Us