#Webmin: a critical security vulnerability discovered in a widely-used web-based system administration tool, allowing authenticated attackers to escalate privileges to root level and execute code.
Caused by CRLF injection: CVE-2025-2774 (CVSS 8.8)
👇
https://cybersecuritynews.com/webmin-vulnerability-escalate-privileges/
Sam Stepanyan :verified: 🐘 /
npub18d…rltg5
2025-05-05 09:30:48
Author Public Key
npub18d0arwv295u03fd825dvn5eharfx25rtrkemffxnar9dzn82drtssrltg5Seen on
wss://relay.mostr.pubPublished at
2025-05-05 09:30:48Event JSON
{
"id": "a32cd42d7a96af1d2529cc43dc309a7edb0910196388452dcac58f95387245eb",
"pubkey": "3b5fd1b98a2d38f8a5a7551ac9d337e8d265506b1db3b4a4d3e8cad14cea68d7",
"created_at": 1746437448,
"kind": 1,
"tags": [
[
"t",
"webmin"
],
[
"proxy",
"https://infosec.exchange/users/securestep9/statuses/114454524643118766",
"activitypub"
],
[
"client",
"Mostr",
"31990:6be38f8c63df7dbf84db7ec4a6e6fbbd8d19dca3b980efad18585c46f04b26f9:mostr",
"wss://relay.mostr.pub"
]
],
"content": "#Webmin: a critical security vulnerability discovered in a widely-used web-based system administration tool, allowing authenticated attackers to escalate privileges to root level and execute code.\nCaused by CRLF injection: CVE-2025-2774 (CVSS 8.8)\n👇\nhttps://cybersecuritynews.com/webmin-vulnerability-escalate-privileges/",
"sig": "cf0e54a84edccd6ca4d9651b056836fb19ac88c03573ec2fd3ab983df8f09187ba6a92906d2ca90951509d3d76c887311686c823c04d914f1f73a3cba3d92e20"
}