CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Webmin: >> Webmin >> 0.92 Security Vulnerabilities

CVE-2002-0756

Cross-site scripting vulnerability in the authentication page for (1) Webmin 0.96 and (2) Usermin 0.90 allows remote attackers to insert script into an error page and possibly steal cookies.

CVSS Score

7.5

EPSS Score

0.01

Published

2002-08-12

CVE-2002-0757

(1) Webmin 0.96 and (2) Usermin 0.90 with password timeouts enabled allow local and possibly remote attackers to bypass authentication and gain privileges via certain control characters in the authentication information, which can force Webmin or Usermin to accept arbitrary username/session ID combinations.

CVSS Score

7.5

EPSS Score

0.006

Published

2002-08-12

Page 5

Vulnerabilities

Vulnerable Software

Webmin: >> Webmin >> 0.92 Security Vulnerabilities

Products

Pricing

Contact Us