Security Advisory

CVE-2023-38309

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-07-31 00:00:00

Last updated 2024-10-22 17:49:35

Assigner mitre

State PUBLISHED

Description

An issue was discovered in Webmin 2.021. A Reflected Cross-Site Scripting (XSS) vulnerability was discovered in the package search functionality. The vulnerability allows an attacker to inject a malicious payload in the "Search for Package" field, which gets reflected back in the applications response, leading to the execution of arbitrary JavaScript code within the context of the victims browser.

← Browse all CVEs View on cve.org ↗