CVE-2021-32157

CRITICAL

Webmin - XSS

Title source: rule

A Cross-Site Scripting (XSS) vulnerability exists in Webmin 1.973 via the Scheduled Cron Jobs feature.

nomisec WORKING POC 1 stars

by dnr6419 · poc

nomisec WORKING POC

by Mesh3l911 · poc

CVSS v3 9.6

EPSS 0.2528

EPSS Percentile 96.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

CWE

CWE-79

Status published

Products (1)

webmin/webmin 1.973

Published Apr 11, 2022

Tracked Since Feb 18, 2026