Lucene search
SecurityvulnsSECURITYVULNS:DOC:19020HistoryFeb 06, 2008 - 12:00 a.m.
Tested on Webmin 1.390
2008-02-0600:00:00
vulners.com
10
Aria-Security Team (Persian Security Network)
http://Aria-Security.Net
Tested on Webmin 1.390 Cross Site Scripting
This vuln was tested on Webmin as an administrator account (root)
and it has worked on the search section (file) of the system.
Value Inserted:
"><script>alert('Discovered By Aria-Security')</script>
Regards,
Aria-Security Team (Persian Security Network)
The-0utl4w
Credits Goes to Aria-Security Team
for more info visit:
http://forum.aria-security.net/forumdisplay.php?f=60