CVE-2023-40984

Name of the Vulnerable Software and Affected Versions Webmin version 2.100

Description A reflected cross-site scripting (XSS) issue in the File Manager function allows attackers to execute malicious scripts by injecting a crafted payload into the Replace in Results file. This enables the execution of malicious scripts.

Recommendations For Webmin version 2.100, consider disabling the File Manager function until a patch is available to prevent exploitation of the reflected cross-site scripting issue. Restrict access to the Replace in Results file to minimize the risk of malicious script injection.