VYPR
Unrated severityNVD Advisory· Published Oct 12, 2020· Updated Aug 4, 2024

CVE-2020-8821

CVE-2020-8821

Description

An Improper Data Validation Vulnerability exists in Webmin 1.941 and earlier affecting the Command Shell Endpoint. A user may enter HTML code into the Command field and submit it. Then, after visiting the Action Logs Menu and displaying logs, the HTML code will be rendered (however, JavaScript is not executed). Changes are kept across users.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Webmin/Webmindescription
  • Webmin/Webminllm-fuzzy
    Range: <=1.941

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.