CVE-2022-36446

Description

software/apt-lib.pl in Webmin before 1.997 lacks HTML escaping for a UI command.

NVD
Severity: CRITICAL
CVE ID: CVE-2022-36446
CVSS Score: 9.8
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Refrence: NVD MITRE

Nuclei Templates for CVE-2022-36446

Refrence: Project Discovery GitHub

p0dalirius

A Python script to exploit CVE-2022-36446 Software Package Updates RCE (Authenticated) on Webmin < 1.997.

Refrence: GitHub

emirpolatt

CVE-2022-36446 - Webmin 1.996 Remote Code Execution

Refrence: GitHub

monzaviman | watchers:4

CVE_2022_36446
This is a script for version detection of Webmin remote server interface.

Refrence: GitHub

kh4sh3i | watchers:4

Webmin-CVE
a Curated list of Webmin vulnerability for penetration tester

Refrence: GitHub