This CPE summary could be partial or incomplete. Please contact us for a detailed listing.


CPE Namecpe:/a:webmin:webmin:1.090
VendorWebminFirst view 2007-06-11
ProductWebminLast view2015-02-10
CPE Productcpe:/a:webmin:webmin

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
4.92015-02-10CVE-2015-1377LocalLowNone Requ...
2.62014-07-20CVE-2014-3886NetworkHighNone Requ...
4.32014-07-20CVE-2014-3885NetworkMediumNone Requ...
4.32014-05-30CVE-2014-3924NetworkMediumNone Requ...
4.32014-03-16CVE-2014-0339NetworkMediumNone Requ...
Hide | Show 4 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32011-05-31CVE-2011-1937NetworkMediumNone Requ...
4.32010-01-05CVE-2009-4568NetworkMediumNone Requ...
92007-09-24CVE-2007-5066NetworkLowRequires ...
4.32007-06-11CVE-2007-3156NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

77% (7)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
11% (1)CWE-59Improper Link Resolution Before File Access ('Link Following')
11% (1)CWE-20Improper Input Validation

Open Source Vulnerability Database (OSVDB)

74342Webmin useradmin/ chfn Command Full Name Field XSS
60883Webmin / Usermin Unspecified XSS
40772Webmin Crafted URL Unspecified Arbitrary Command Execution
36932Webmin pam_login.cgi Multiple Parameter XSS

OpenVAS Exploits

2011-06-20Name : Mandriva Update for webmin MDVSA-2011:109 (webmin)
File : nvt/gb_mandriva_MDVSA_2011_109.nasl
2010-02-15Name : Mandriva Update for webmin MDVSA-2010:036 (webmin)
File : nvt/gb_mandriva_MDVSA_2010_036.nasl
2009-04-09Name : Mandriva Update for webmin MDKSA-2007:135 (webmin)
File : nvt/gb_mandriva_MDKSA_2007_135.nasl
2008-09-24Name : Gentoo Security Advisory GLSA 200707-05 (webmin/usermin)
File : nvt/glsa_200707_05.nasl
2008-09-04Name : FreeBSD Ports: webmin
File : nvt/freebsd_webmin1.nasl

Nessus® Vulnerability Scanner

2014-09-16Name : The remote web server is affected by multiple vulnerabilities.
File : usermin_1_600_mult.nasl - Type : ACT_GATHER_INFO
2014-09-16Name : The remote web server is affected by multiple cross-site scripting vulnerabil...
File : webmin_1_690_mult_xss.nasl - Type : ACT_GATHER_INFO
2011-06-14Name : The remote Mandriva Linux host is missing a security update.
File : mandriva_MDVSA-2011-109.nasl - Type : ACT_GATHER_INFO
2010-02-15Name : The remote Mandriva Linux host is missing a security update.
File : mandriva_MDVSA-2010-036.nasl - Type : ACT_GATHER_INFO
2007-07-10Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200707-05.nasl - Type : ACT_GATHER_INFO
Hide | Show 2 More...
2007-06-27Name : The remote Mandrake Linux host is missing a security update.
File : mandrake_MDKSA-2007-135.nasl - Type : ACT_GATHER_INFO
2007-06-12Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_12b7286f16a211dcb8030016179b2dd5.nasl - Type : ACT_GATHER_INFO