A Stored Cross-Site Scripting (XSS) vulnerability in the SSH configuration tab in Usermin 2.001 allows remote attackers to inject arbitrary web script or HTML via the key name field while adding an authorized key.
References
Link | Resource |
---|---|
https://github.com/shindeanik/Usermin-2.001/blob/main/CVE-2023-41160 | Exploit Third Party Advisory |
https://webmin.com/tags/webmin-changelog/ | Release Notes |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-09-14T00:00:00
Updated: 2023-09-14T20:40:46.472788
Reserved: 2023-08-24T00:00:00
Link: CVE-2023-41160
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-09-14T21:15:10.750
Modified: 2023-09-19T18:23:34.110
Link: CVE-2023-41160
JSON object: View
Redhat Information
No data.
CWE