This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:webmin:webmin:0.970
Detail
VendorWebminFirst view 2002-12-31
ProductWebminLast view2015-02-10
Version0.970TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:webmin:webmin

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
4.92015-02-10CVE-2015-1377LocalLowNone Requ...
2.62014-07-20CVE-2014-3886NetworkHighNone Requ...
4.32014-07-20CVE-2014-3885NetworkMediumNone Requ...
4.32014-05-30CVE-2014-3924NetworkMediumNone Requ...
4.32014-03-16CVE-2014-0339NetworkMediumNone Requ...
Hide | Show 9 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32011-05-31CVE-2011-1937NetworkMediumNone Requ...
4.32010-01-05CVE-2009-4568NetworkMediumNone Requ...
92007-09-24CVE-2007-5066NetworkLowRequires ...
4.32007-06-11CVE-2007-3156NetworkMediumNone Requ...
6.82006-09-05CVE-2006-4542NetworkMediumNone Requ...
52006-07-06CVE-2006-3392NetworkLowNone Requ...
52006-06-28CVE-2006-3274NetworkLowNone Requ...
7.52005-11-30CVE-2005-3912NetworkLowNone Requ...
9.32002-12-31CVE-2002-2360NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
72% (8)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
9% (1)CWE-264Permissions, Privileges, and Access Controls
9% (1)CWE-59Improper Link Resolution Before File Access ('Link Following')
9% (1)CWE-20Improper Input Validation

Open Source Vulnerability Database (OSVDB)

idDescription
74342Webmin useradmin/user-lib.pl chfn Command Full Name Field XSS
60883Webmin / Usermin Unspecified XSS
60228Webmin RPC Module remote_foreign_* Request Remote File Manipulation
40772Webmin Crafted URL Unspecified Arbitrary Command Execution
36932Webmin pam_login.cgi Multiple Parameter XSS
Hide | Show 5 More...
idDescription
28338Webmin/Usermin NULL Character Unspecified XSS
28337Webmin/Usermin NULL Character Unspecified Source Disclosure
26772Webmin/Usermin simplify_path() Failure Arbitrary File Disclosure
26771Webmin Crafted Backslash Request Traversal Arbitrary File Access
21222Webmin/Usermin miniserv.pl Format String Remote Code Execution

OpenVAS Exploits

idDescription
2011-06-20Name : Mandriva Update for webmin MDVSA-2011:109 (webmin)
File : nvt/gb_mandriva_MDVSA_2011_109.nasl
2010-02-15Name : Mandriva Update for webmin MDVSA-2010:036 (webmin)
File : nvt/gb_mandriva_MDVSA_2010_036.nasl
2009-04-09Name : Mandriva Update for webmin MDKSA-2007:135 (webmin)
File : nvt/gb_mandriva_MDKSA_2007_135.nasl
2008-09-24Name : Gentoo Security Advisory GLSA 200512-02 (webmin usermin)
File : nvt/glsa_200512_02.nasl
2008-09-24Name : Gentoo Security Advisory GLSA 200707-05 (webmin/usermin)
File : nvt/glsa_200707_05.nasl
Hide | Show 5 More...
idDescription
2008-09-24Name : Gentoo Security Advisory GLSA 200608-11 (webmin/usermin)
File : nvt/glsa_200608_11.nasl
2008-09-04Name : FreeBSD Ports: perl
File : nvt/freebsd_perl1.nasl
2008-09-04Name : FreeBSD Ports: webmin
File : nvt/freebsd_webmin0.nasl
2008-09-04Name : FreeBSD Ports: webmin
File : nvt/freebsd_webmin1.nasl
2008-01-17Name : Debian Security Advisory DSA 1199-1 (webmin)
File : nvt/deb_1199_1.nasl

Nessus® Vulnerability Scanner

idDescription
2014-09-16Name : The remote web server is affected by an information disclosure flaw.
File : usermin_1220_info_disclosure.nasl - Type : ACT_ATTACK
2014-09-16Name : The remote web server is affected by an information disclosure vulnerability.
File : usermin_1226_info_disclosure.nasl - Type : ACT_ATTACK
2014-09-16Name : The remote web server is affected by multiple vulnerabilities.
File : usermin_1_600_mult.nasl - Type : ACT_GATHER_INFO
2014-09-16Name : The remote web server is affected by multiple cross-site scripting vulnerabil...
File : webmin_1_690_mult_xss.nasl - Type : ACT_GATHER_INFO
2011-06-14Name : The remote Mandriva Linux host is missing a security update.
File : mandriva_MDVSA-2011-109.nasl - Type : ACT_GATHER_INFO
Hide | Show 19 More...
idDescription
2010-02-15Name : The remote Mandriva Linux host is missing a security update.
File : mandriva_MDVSA-2010-036.nasl - Type : ACT_GATHER_INFO
2007-07-10Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200707-05.nasl - Type : ACT_GATHER_INFO
2007-06-27Name : The remote Mandrake Linux host is missing a security update.
File : mandrake_MDKSA-2007-135.nasl - Type : ACT_GATHER_INFO
2007-06-12Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_12b7286f16a211dcb8030016179b2dd5.nasl - Type : ACT_GATHER_INFO
2007-02-18Name : The remote Mandrake Linux host is missing a security update.
File : mandrake_MDKSA-2006-170.nasl - Type : ACT_GATHER_INFO
2006-12-16Name : The remote Mandrake Linux host is missing a security update.
File : mandrake_MDKSA-2006-125.nasl - Type : ACT_GATHER_INFO
2006-10-25Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1199.nasl - Type : ACT_GATHER_INFO
2006-09-02Name : The remote web server is affected by a information disclosure vulnerability.
File : webmin_1296.nasl - Type : ACT_ATTACK
2006-08-07Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200608-11.nasl - Type : ACT_GATHER_INFO
2006-07-03Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_227475c209cb11db9156000e0c2e438a.nasl - Type : ACT_GATHER_INFO
2006-06-30Name : The remote web server is affected by an information disclosure flaw.
File : webmin_1290.nasl - Type : ACT_ATTACK
2006-05-13Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_bb33981a7ac611dabf7200123f589060.nasl - Type : ACT_GATHER_INFO
2006-01-15Name : The remote Mandrake Linux host is missing a security update.
File : mandrake_MDKSA-2005-223.nasl - Type : ACT_GATHER_INFO
2005-12-26Name : The remote web server is affected by a format string vulnerability.
File : webmin_miniserv_username_format_string.nasl - Type : ACT_DENIAL
2005-12-15Name : The remote Fedora Core host is missing a security update.
File : fedora_2005-1144.nasl - Type : ACT_GATHER_INFO
2005-12-15Name : The remote Fedora Core host is missing a security update.
File : fedora_2005-1145.nasl - Type : ACT_GATHER_INFO
2005-12-08Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200512-02.nasl - Type : ACT_GATHER_INFO
2005-12-07Name : The remote Fedora Core host is missing a security update.
File : fedora_2005-1113.nasl - Type : ACT_GATHER_INFO
2005-12-07Name : The remote Fedora Core host is missing a security update.
File : fedora_2005-1116.nasl - Type : ACT_GATHER_INFO