CVE-2020-35606

HIGH

Webmin <= 1.962 - Authenticated Remote Command Execution via Package Updates Module

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2020-35606. PoCs published by AkkuS, anasbousselham.

AI-analyzed exploit summary This Metasploit module exploits a command injection vulnerability in Webmin 1.962 and earlier by bypassing input sanitization in the Package Updates module, allowing authenticated users to execute arbitrary commands with root privileges.

Description

Arbitrary command execution can occur in Webmin through 1.962. Any user authorized for the Package Updates module can execute arbitrary commands with root privileges via vectors involving %0A and %0C. NOTE: this issue exists because of an incomplete fix for CVE-2019-12840.

Exploits (2)

exploitdb WORKING POC VERIFIED

by AkkuS · rubywebappslinux

https://www.exploit-db.com/exploits/49318

View Code ZIP pw:eip

This Metasploit module exploits a command injection vulnerability in Webmin 1.962 and earlier by bypassing input sanitization in the Package Updates module, allowing authenticated users to execute arbitrary commands with root privileges.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Webmin <= 1.962

Auth required

Prerequisites: Valid Webmin credentials · Access to the Package Updates module

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec SUSPICIOUS

by anasbousselham · poc

https://github.com/anasbousselham/webminscan

View Code ZIP pw:eip

The repository claims to be a scanner for CVE-2020-35606 and CVE-2019-12840 but contains no actual code or technical details. It appears to be a placeholder or lure.

Classification

Suspicious 90%

Attack Type

Other

Complexity

Theoretical

Reliability

Theoretical

Target: Webmin

No auth needed

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (4)

Core 4

Core References

Exploit, Third Party Advisory x_refsource_misc

https://www.pentest.com.tr/exploits/Webmin-1962-PU-Escape-Bypass-Remote-Command-Execution.html

Product x_refsource_misc

https://www.webmin.com/download.html

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

http://packetstormsecurity.com/files/160676/Webmin-1.962-Remote-Command-Execution.html

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/49318

Scores

CVSS v3 8.8

EPSS 0.7695

EPSS Percentile 99.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-78

Status published

Products (1)

webmin/webmin < 1.962

Published Dec 21, 2020

Tracked Since Feb 18, 2026