CVE-2014-3886 Information

Description

Cross-site scripting (XSS) vulnerability in Webmin before 1.690 when referrer checking is disabled allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this might overlap CVE-2014-3924.

Reference

http://jvn.jp/en/jp/JVN02213197/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2014-000060