2019-06-15 19:52:10
mitre
PUBLISHED
In Webmin through 1.910, any user authorized to the "Package Updates" module can execute arbitrary commands with root privileges via the data parameter to update.cgi.