CVE-2023-41162

Name of the Vulnerable Software and Affected Versions Usermin version 2.000

Description A Reflected Cross-site scripting (XSS) issue exists in the file manager tab, allowing remote attackers to inject arbitrary web script or HTML via the file mask field while searching under the tools drop down.

Recommendations For Usermin version 2.000, consider restricting access to the file manager tab until a fix is available. As a temporary workaround, avoid using the file mask field for searching under the tools drop down to minimize the risk of exploitation.