CVE-2019-9624

HIGH

Webmin 1.900 - RCE

Title source: llm

Description

Webmin 1.900 allows remote attackers to execute arbitrary code by leveraging the "Java file manager" and "Upload and Download" privileges to upload a crafted .cgi file via the /updown/upload.cgi URI.

Exploits (3)

nomisec WORKING POC

by x0rbeexd · poc

https://github.com/x0rbeexd/CVE-2019-9624

View Code ZIP pw:eip

exploitdb WORKING POC

by AkkuS · rubyremotecgi

https://www.exploit-db.com/exploits/46201

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by AkkuS <Özkan Mustafa Akkuş> · rubypocunix

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/webmin_upload_exec.rb

View Code ZIP pw:eip

References (3)

[Third Party Advisory] http://www.rapid7.com/db/modules/exploit/unix/webapp/webmin_upload_exec

[Exploit, Third Party Advisory] https://pentest.com.tr/exploits/Webmin-1900-Remote-Command-Execution.html

[Exploit, Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/46201

Scores

CVSS v3 7.8

EPSS 0.5248

EPSS Percentile 97.9%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Classification

CWE

CWE-269

Status published

Affected Products (1)

webmin/webmin

Timeline

Published Mar 07, 2019

Tracked Since Feb 18, 2026