CVE-2023-41162

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Sep 13, 2023

Updated: Sep 19, 2023

CWE ID 79

Summary

CVE-2023-41162 is a Reflected Cross-site scripting (XSS) vulnerability affecting Usermin 2.000's file manager tab. This issue enables remote attackers to inject arbitrary web scripts or HTML code via the file mask field during searches under the tools dropdown menu. Successful exploitation could result in unintended execution of malicious code on the victim's browser and potential data exfiltration or session hijacking. It is crucial for system administrators to apply the necessary patches to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

The Webmin Community

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/scI5CT
https://www.cve.org/CVERecord?id=CVE-2023-41162
https://nvd.nist.gov/vuln/detail/CVE-2023-41162

Back to Vulnerability Database

CVE-2023-41162

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations