| ID | CVE-2022-30708 | ||||||
| Sažetak | Webmin through 1.991, when the Authentic theme is used, allows remote code execution when a user has been manually created (i.e., not created in Virtualmin or Cloudmin). This occurs because settings-editor_write.cgi does not properly restrict the file parameter. | ||||||
| Reference |
|
||||||
| CVSS |
|
||||||
| Pristup |
|
||||||
| Impact |
|
||||||
| CVSS vektor | AV:N/AC:L/Au:S/C:P/I:P/A:P | ||||||
| Zadnje važnije ažuriranje | 24-05-2022 - 17:19 | ||||||
| Objavljeno | 15-05-2022 - 03:15 |

