Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    2 vulnerabilities found for userwin by webmin

    CVE-2014-3924 (GCVE-0-2014-3924)

    Vulnerability from nvd – Published: 2014-05-30 14:00 – Updated: 2024-08-06 10:57
    VLAI
    Summary
    Multiple cross-site scripting (XSS) vulnerabilities in Webmin before 1.690 and Usermin before 1.600 allow remote attackers to inject arbitrary web script or HTML via vectors related to popup windows.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.webmin.com/changes.html x_refsource_CONFIRM
    http://secunia.com/advisories/58917 third-party-advisoryx_refsource_SECUNIA
    http://secunia.com/advisories/58919 third-party-advisoryx_refsource_SECUNIA
    http://www.securityfocus.com/bid/67649 vdb-entryx_refsource_BID
    http://www.webmin.com/uchanges.html x_refsource_CONFIRM
    http://www.securitytracker.com/id/1030296 vdb-entryx_refsource_SECTRACK
    http://www.securitytracker.com/id/1030297 vdb-entryx_refsource_SECTRACK
    http://www.securityfocus.com/bid/67647 vdb-entryx_refsource_BID
    Date Public
    2014-05-20 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T10:57:18.053Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.webmin.com/changes.html"
              },
              {
                "name": "58917",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/58917"
              },
              {
                "name": "58919",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/58919"
              },
              {
                "name": "67649",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/67649"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.webmin.com/uchanges.html"
              },
              {
                "name": "1030296",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1030296"
              },
              {
                "name": "1030297",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1030297"
              },
              {
                "name": "67647",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/67647"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2014-05-20T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple cross-site scripting (XSS) vulnerabilities in Webmin before 1.690 and Usermin before 1.600 allow remote attackers to inject arbitrary web script or HTML via vectors related to popup windows."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2014-07-09T12:57:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.webmin.com/changes.html"
            },
            {
              "name": "58917",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/58917"
            },
            {
              "name": "58919",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/58919"
            },
            {
              "name": "67649",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/67649"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.webmin.com/uchanges.html"
            },
            {
              "name": "1030296",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1030296"
            },
            {
              "name": "1030297",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1030297"
            },
            {
              "name": "67647",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/67647"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2014-3924",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple cross-site scripting (XSS) vulnerabilities in Webmin before 1.690 and Usermin before 1.600 allow remote attackers to inject arbitrary web script or HTML via vectors related to popup windows."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://www.webmin.com/changes.html",
                  "refsource": "CONFIRM",
                  "url": "http://www.webmin.com/changes.html"
                },
                {
                  "name": "58917",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/58917"
                },
                {
                  "name": "58919",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/58919"
                },
                {
                  "name": "67649",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/67649"
                },
                {
                  "name": "http://www.webmin.com/uchanges.html",
                  "refsource": "CONFIRM",
                  "url": "http://www.webmin.com/uchanges.html"
                },
                {
                  "name": "1030296",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1030296"
                },
                {
                  "name": "1030297",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1030297"
                },
                {
                  "name": "67647",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/67647"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2014-3924",
        "datePublished": "2014-05-30T14:00:00.000Z",
        "dateReserved": "2014-05-30T00:00:00.000Z",
        "dateUpdated": "2024-08-06T10:57:18.053Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2014-3924 (GCVE-0-2014-3924)

    Vulnerability from cvelistv5 – Published: 2014-05-30 14:00 – Updated: 2024-08-06 10:57
    VLAI
    Summary
    Multiple cross-site scripting (XSS) vulnerabilities in Webmin before 1.690 and Usermin before 1.600 allow remote attackers to inject arbitrary web script or HTML via vectors related to popup windows.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.webmin.com/changes.html x_refsource_CONFIRM
    http://secunia.com/advisories/58917 third-party-advisoryx_refsource_SECUNIA
    http://secunia.com/advisories/58919 third-party-advisoryx_refsource_SECUNIA
    http://www.securityfocus.com/bid/67649 vdb-entryx_refsource_BID
    http://www.webmin.com/uchanges.html x_refsource_CONFIRM
    http://www.securitytracker.com/id/1030296 vdb-entryx_refsource_SECTRACK
    http://www.securitytracker.com/id/1030297 vdb-entryx_refsource_SECTRACK
    http://www.securityfocus.com/bid/67647 vdb-entryx_refsource_BID
    Date Public
    2014-05-20 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T10:57:18.053Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.webmin.com/changes.html"
              },
              {
                "name": "58917",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/58917"
              },
              {
                "name": "58919",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/58919"
              },
              {
                "name": "67649",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/67649"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.webmin.com/uchanges.html"
              },
              {
                "name": "1030296",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1030296"
              },
              {
                "name": "1030297",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1030297"
              },
              {
                "name": "67647",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/67647"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2014-05-20T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple cross-site scripting (XSS) vulnerabilities in Webmin before 1.690 and Usermin before 1.600 allow remote attackers to inject arbitrary web script or HTML via vectors related to popup windows."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2014-07-09T12:57:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.webmin.com/changes.html"
            },
            {
              "name": "58917",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/58917"
            },
            {
              "name": "58919",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/58919"
            },
            {
              "name": "67649",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/67649"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.webmin.com/uchanges.html"
            },
            {
              "name": "1030296",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1030296"
            },
            {
              "name": "1030297",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1030297"
            },
            {
              "name": "67647",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/67647"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2014-3924",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple cross-site scripting (XSS) vulnerabilities in Webmin before 1.690 and Usermin before 1.600 allow remote attackers to inject arbitrary web script or HTML via vectors related to popup windows."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://www.webmin.com/changes.html",
                  "refsource": "CONFIRM",
                  "url": "http://www.webmin.com/changes.html"
                },
                {
                  "name": "58917",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/58917"
                },
                {
                  "name": "58919",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/58919"
                },
                {
                  "name": "67649",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/67649"
                },
                {
                  "name": "http://www.webmin.com/uchanges.html",
                  "refsource": "CONFIRM",
                  "url": "http://www.webmin.com/uchanges.html"
                },
                {
                  "name": "1030296",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1030296"
                },
                {
                  "name": "1030297",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1030297"
                },
                {
                  "name": "67647",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/67647"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2014-3924",
        "datePublished": "2014-05-30T14:00:00.000Z",
        "dateReserved": "2014-05-30T00:00:00.000Z",
        "dateUpdated": "2024-08-06T10:57:18.053Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }