CVE-2023-41153
CVSS 3.1 Score 5.4 of 10 (medium)
Details
Summary
CVE-2023-41153 is a Stored Cross-Site Scripting (XSS) vulnerability affecting Usermin 2.001. This issue resides in the SSH configuration tab and enables remote attackers to inject malicious scripts or HTML code. The vulnerability is triggered when an attacker manipulates the host value during the editing of host options. Successful exploitation could lead to unintended execution of attacker-supplied code within the Usermin interface, potentially compromising user data or sessions. It is crucial for system administrators to apply the necessary patches or upgrades to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- The Webmin Community