Webmin 1.973 Vulnerability: CSRF Exploit for Privileged User Creation and Reverse Shell

Webmin 1.973 Vulnerability: CSRF Exploit for Privileged User Creation and Reverse Shell

CVE-2021-31762 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Webmin 1.973 is affected by Cross Site Request Forgery (CSRF) to create a privileged user through Webmin's add users feature, and then get a reverse shell through Webmin's running process feature.

Learn more about our User Device Pen Test.