Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2023-41161

Multiple stored cross-site scripting (XSS) vulnerabilities in Usermin 2.000 allow remote attackers to inject arbitrary web script or HTML via the key comment to different pages such as public key details, Export key, sign key, send to key server page, and fetch from key server page tab.

  • Published: Sep 8, 2023
  • Updated: Sep 20, 2023
  • CVE: CVE-2023-41161
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.4
  • AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
webmin / usermin 2.000 2.000.x