Cross-site scripting vulnerability exists in session_login.cgi of Webmin versions prior to 1.970 and Usermin versions prior to 1.820. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who accessed the website using the product. As a result, a webpage may be altered or sensitive information such as a credential may be disclosed.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: jpcert
Published: 2024-07-10T07:02:17.776Z
Updated: 2024-08-02T03:37:05.102Z
Reserved: 2024-05-28T05:38:38.739Z
Link: CVE-2024-36453
Vulnrichment
Updated: 2024-07-10T14:06:36.800Z
NVD
Status : Awaiting Analysis
Published: 2024-07-10T07:15:03.177
Modified: 2024-07-11T15:05:48.797
Link: CVE-2024-36453
Redhat
No data.