First published: Fri Sep 15 2023(Updated: )
A reflected cross-site scripting (XSS) vulnerability in the File Manager function of Webmin v2.100 allows attackers to execute malicious scripts via injecting a crafted payload into the Find in Results file.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Webmin Webmin | =2.100 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2023-40983 is medium with a CVSS score of 6.1.
The reflected cross-site scripting (XSS) vulnerability in CVE-2023-40983 allows attackers to execute malicious scripts by injecting a crafted payload into the Find in Results file in Webmin v2.100.
To fix the reflected cross-site scripting (XSS) vulnerability in CVE-2023-40983 in Webmin v2.100, it is recommended to update to a patched version or apply any available security patches provided by Webmin.
You can find more information about the reflected cross-site scripting (XSS) vulnerability in CVE-2023-40983 on the Webmin website and the GitHub repository linked in the references.
The Common Weakness Enumeration (CWE) ID associated with CVE-2023-40983 is CWE-79.