cve/CVE-2011-1937.md at master

0xMarcio/cve

Fork 0

Files

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

852 B

Raw Permalink Blame History

CVE-2011-1937

Description

Cross-site scripting (XSS) vulnerability in Webmin 1.540 and earlier allows local users to inject arbitrary web script or HTML via a chfn command that changes the real (aka Full Name) field, related to useradmin/index.cgi and useradmin/user-lib.pl.

POC

Reference

http://securityreason.com/securityalert/8264
http://www.youtube.com/watch?v=CUO7JLIGUf0
46e3d3ad19

Github

No PoCs found on GitHub currently.

852 B Raw Permalink Blame History

CVE-2011-1937

Description

POC

Reference

Github

852 B

Raw Permalink Blame History