← back
CVE-2012-2983

CVE-2012-2983

23Vexday Risk Score

Patch soon. It has a working public exploit.

ssvc Attendepss 20%
from disclosure to weapon0 days
Published on NVDSep 11
metasploitSep 6
exploitation probability
20%top 3% of all CVEs
observed exploitation
nono source reports it
file/edit_html.cgi in Webmin 1.590 and earlier does not perform an authorization check before showing a file's unedited contents, which allows remote attackers to read arbitrary files via the file field.
Affected products
n/a · n/a