GHSA-xpvh-gv3p-w5qxMediumCVSS 5.3

Webmin allows unauthenticated attackers to read the contents of any file ending in .conf within...

Published
June 18, 2026
Last Modified
June 18, 2026

🔗 CVE IDs covered (1)

📋 Description

Webmin allows unauthenticated attackers to read the contents of any file ending in .conf within module directories, due to a bypassable regex pattern.

🔗 References (6)