This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:webmin:webmin:1.050 |
| Detail | |||
|---|---|---|---|
| Vendor | Webmin | First view | 2007-06-11 |
| Product | Webmin | Last view | 2017-07-03 |
| Version | 1.050 | Type | Application |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/a:webmin:webmin | ||
Activity : Overall
Related : CVE
| Date | Alert | Access Vector | Access Complexity | Authentication | ||
|---|---|---|---|---|---|---|
| 4.3 | 2017-07-03 | CVE-2017-9313 | Network | Medium | None Requ... | |
| 4.3 | 2017-04-28 | CVE-2017-2106 | Network | Medium | None Requ... | |
| 4.9 | 2015-02-10 | CVE-2015-1377 | Local | Low | None Requ... | |
| 2.6 | 2014-07-20 | CVE-2014-3886 | Network | High | None Requ... | |
| 4.3 | 2014-07-20 | CVE-2014-3885 | Network | Medium | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentication | ||
|---|---|---|---|---|---|---|
| 4.3 | 2014-05-30 | CVE-2014-3924 | Network | Medium | None Requ... | |
| 4.3 | 2014-03-16 | CVE-2014-0339 | Network | Medium | None Requ... | |
| 4.3 | 2011-05-31 | CVE-2011-1937 | Network | Medium | None Requ... | |
| 4.3 | 2010-01-05 | CVE-2009-4568 | Network | Medium | None Requ... | |
| 9 | 2007-09-24 | CVE-2007-5066 | Network | Low | Requires ... | |
| 4.3 | 2007-06-11 | CVE-2007-3156 | Network | Medium | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 81% (9) | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') |
| 9% (1) | CWE-59 | Improper Link Resolution Before File Access ('Link Following') |
| 9% (1) | CWE-20 | Improper Input Validation |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 74342 | Webmin useradmin/user-lib.pl chfn Command Full Name Field XSS |
| 60883 | Webmin / Usermin Unspecified XSS |
| 40772 | Webmin Crafted URL Unspecified Arbitrary Command Execution |
| 36932 | Webmin pam_login.cgi Multiple Parameter XSS |
OpenVAS Exploits
| id | Description |
|---|---|
| 2011-06-20 | Name : Mandriva Update for webmin MDVSA-2011:109 (webmin) File : nvt/gb_mandriva_MDVSA_2011_109.nasl |
| 2010-02-15 | Name : Mandriva Update for webmin MDVSA-2010:036 (webmin) File : nvt/gb_mandriva_MDVSA_2010_036.nasl |
| 2009-04-09 | Name : Mandriva Update for webmin MDKSA-2007:135 (webmin) File : nvt/gb_mandriva_MDKSA_2007_135.nasl |
| 2008-09-24 | Name : Gentoo Security Advisory GLSA 200707-05 (webmin/usermin) File : nvt/glsa_200707_05.nasl |
| 2008-09-04 | Name : FreeBSD Ports: webmin File : nvt/freebsd_webmin1.nasl |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2014-09-16 | Name : The remote web server is affected by multiple vulnerabilities. File : usermin_1_600_mult.nasl - Type : ACT_GATHER_INFO |
| 2014-09-16 | Name : The remote web server is affected by multiple cross-site scripting vulnerabil... File : webmin_1_690_mult_xss.nasl - Type : ACT_GATHER_INFO |
| 2011-06-14 | Name : The remote Mandriva Linux host is missing a security update. File : mandriva_MDVSA-2011-109.nasl - Type : ACT_GATHER_INFO |
| 2010-02-15 | Name : The remote Mandriva Linux host is missing a security update. File : mandriva_MDVSA-2010-036.nasl - Type : ACT_GATHER_INFO |
| 2007-07-10 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200707-05.nasl - Type : ACT_GATHER_INFO |
| id | Description |
|---|---|
| 2007-06-27 | Name : The remote Mandrake Linux host is missing a security update. File : mandrake_MDKSA-2007-135.nasl - Type : ACT_GATHER_INFO |
| 2007-06-12 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_12b7286f16a211dcb8030016179b2dd5.nasl - Type : ACT_GATHER_INFO |
