PT-2025-42477 · Webmin+1 · Webmin+1

Published

2025-10-11

Updated

2025-11-21

CVE-2025-61541

CVSS v2.0

8.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:C

Name of the Vulnerable Software and Affected Versions Webmin version 2.510

Description Webmin version 2.510 has a flaw in the password reset functionality (forgot send.cgi). The reset link sent to users is created using the HTTP Host header through the get webmin email url() function. An attacker can manipulate the Host header to insert a malicious domain into the reset email. If a user clicks the altered link, the attacker can intercept the reset token and take complete control of the account. The vulnerable component is the construction of the reset link using the HTTP Host header.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284

Related Identifiers

BDU:2025-14429

CVE-2025-61541

Affected Products

Red Os

Webmin

PT-2025-42477 · Webmin+1 · Webmin+1

CVE-2025-61541

Weakness Enumeration

Related Identifiers

Affected Products

References · 14