oss-sec mailing list archives

Re: CVE-request: XSS in Webmin 1.540

From: "Jamie Cameron" <jcameron () webmin com>
Date: Mon, 13 Jun 2011 09:42:52 -0700 (PDT)

On 13/Jun/2011 06:40 Henri Salo <henri () nerv fi> wrote ..

Hi,

I would like to receive CVE-identifier for this issue in Webmin. References:

http://seclists.org/fulldisclosure/2011/Apr/393

Javier Bassi told me that the Bugtraq ID is 47558. Couldn't find this from OSVDB.
Fixed in commit: https://github.com/webmin/webmin/commit/46e3d3ad195dcdc1af1795c96b6e0dc778fb6881
which is included to Webmin 1.550 release.

Should be 2011 identifier.


There is no CVE for this - the original submitter Javier had trouble obtaining one.

Actually, I have no idea where CVEs come from either!

 - Jamie

Current thread:

CVE-request: XSS in Webmin 1.540 Henri Salo (Jun 13)
- Re: CVE-request: XSS in Webmin 1.540 Javier Bassi (Jun 13)
- Re: CVE-request: XSS in Webmin 1.540 Jamie Cameron (Jun 13)
  - Re: Re: CVE-request: XSS in Webmin 1.540 Josh Bressers (Jun 13)