HTTP: Webmin Command-Shell index.cgi Stored Cross-Site Scripting
This signature detects attempts to exploit a known cross-site scripting vulnerability against Webmin. It is due to insufficient validation of user-supplied input. Attackers can steal cookie-based authentication credentials and launch other attacks.
Extended Description
An Improper Data Validation Vulnerability exists in Webmin 1.941 and earlier affecting the Command Shell Endpoint. A user may enter HTML code into the Command field and submit it. Then, after visiting the Action Logs Menu and displaying logs, the HTML code will be rendered (however, JavaScript is not executed). Changes are kept across users.
Affected Products
Webmin webmin
References
CVE: CVE-2020-8821
Short Name
HTTP:XSS:WEBMIN-CMD-SHELL-SXSS
Severity
Warning
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2020-8821 Command-Shell Cross-Site Scripting Stored Webmin index.cgi
Release Date
02/25/2021
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3825
False Positive
Unknown
Vendors
Webmin
CVSS Score
3.5