admin/GobyVuls
1
0
Fork 0
mirror of https://github.com/gobysec/GobyVuls.git synced 2025-06-20 01:40:20 +00:00
Code Issues Packages Projects Releases Wiki Activity

add CVE-2019-15107

Browse Source
This commit is contained in:
tardc 2020-11-06 22:30:36 +08:00
parent 0b07acd129
commit 5118de008f
2 changed files with 11 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

BIN
Webmin/CVE-2019-15107/CVE-2019-15107.gif Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 1.1 MiB

11
Webmin/CVE-2019-15107/README.md Normal file
View File

@ -0,0 +1,11 @@
# CVE-2019-15107 Webmin RCE
An issue was discovered in Webmin <=1.920. The parameter old in password_change.cgi contains a command injection vulnerability.
**Affected version**: Webmin <=1.920
**[FOFA](https://fofa.so/result?q=app%3D%22Webmin%22&qbase64=YXBwPSJXZWJtaW4i&file=&file=) query rule**: app="Webmin"
# Demo
![](CVE-2019-15107.gif)