[Git][security-tracker-team/security-tracker][master] Add CVE-2025-61541/webmin
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Oct 16 22:29:35 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
41352843 by Salvatore Bonaccorso at 2025-10-16T23:29:15+02:00
Add CVE-2025-61541/webmin
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -108,7 +108,7 @@ CVE-2025-61553 (An out-of-bounds write in VirtIO network device emulation in Bit
CVE-2025-61543 (A Host Header Injection vulnerability exists in the password reset fun ...)
NOT-FOR-US: CraftMyCMS
CVE-2025-61541 (Webmin 2.510 is vulnerable to a Host Header Injection in the password ...)
- TODO: check
+ - webmin <removed>
CVE-2025-61540 (SQL injection vulnerability in Ultimate PHP Board 2.2.7 via the userna ...)
NOT-FOR-US: Ultimate PHP Board
CVE-2025-61539 (Cross site scripting (XSS) vulnerability in Ultimate PHP Board 2.2.7 v ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/41352843faa20d7c0325d254d7540b8190c06b72
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/41352843faa20d7c0325d254d7540b8190c06b72
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251016/666d91d1/attachment.htm>
More information about the debian-security-tracker-commits
mailing list