Webmin · Webmin · CVE-2014-3886
**Name of the Vulnerable Software and Affected Versions**
Webmin versions prior to 1.690
**Description**
A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML when referrer checking is disabled.
**Recommendations**
For versions prior to 1.690, update to version 1.690 or later to resolve the issue.