Security Advisory

CVE-2023-38311

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-07-31 00:00:00
Last updated 2024-10-22 17:43:26
Assigner mitre
State PUBLISHED

Description

An issue was discovered in Webmin 2.021. A Stored Cross-Site Scripting (XSS) vulnerability was discovered in the System Logs Viewer functionality. The vulnerability allows an attacker to store a malicious payload in the configuration field, triggering the execution of the payload when saving the configuration or when accessing the System Logs Viewer page.