VULHUB ™

Webmin is prone to multiple unspecified vulnerabilities that may allow an attacker to disclose sensitive information and carry out denial of service attacks against legitimate users of the application. The first issue can allow a user to disclose sensitive configuration information about any module regardless of the user's privileges. The second issue can allow an attacker to send fake credentials to the application that results in locking out legitimate users of Webmin. Webmin versions 1.140 and prior are affected by these issues.

Webmin is prone to multiple unspecified vulnerabilities that may allow an attacker to disclose sensitive information and carry out denial of service attacks against legitimate users of the application. The first issue can allow a user to disclose sensitive configuration information about any module regardless of the user's privileges. The second issue can allow an attacker to send fake credentials to the application that results in locking out legitimate users of Webmin. Webmin versions 1.140 and prior are affected by these issues.