A Stored Cross-Site Scripting (XSS) vulnerability while editing the autoreply file page in Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML by editing the forward file manually.
References
Link | Resource |
---|---|
https://github.com/shindeanik/Usermin-2.000/blob/main/CVE-2023-41159 | Third Party Advisory |
https://webmin.com/tags/webmin-changelog/ | Release Notes |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-09-14T00:00:00
Updated: 2023-09-14T20:58:25.091676
Reserved: 2023-08-24T00:00:00
Link: CVE-2023-41159
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-09-14T21:15:10.690
Modified: 2023-09-19T16:52:36.037
Link: CVE-2023-41159
JSON object: View
Redhat Information
No data.
CWE