{"id":"CVE-2021-31760","details":"Webmin 1.973 is affected by Cross Site Request Forgery (CSRF) to achieve Remote Command Execution (RCE) through Webmin's running process feature.","modified":"2026-07-09T01:30:50.168373Z","published":"2021-04-25T19:15:08.173Z","references":[{"type":"ADVISORY","url":"https://github.com/Mesh3l911/CVE-2021-31760"},{"type":"ADVISORY","url":"https://github.com/electronicbots/CVE-2021-31760"},{"type":"ADVISORY","url":"https://github.com/webmin/webmin"},{"type":"EVIDENCE","url":"https://youtu.be/D45FN8QrzDo"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/webmin/webmin","events":[{"introduced":"d7323047251d03763064e7478d1e176546dd24f4"},{"last_affected":"d7323047251d03763064e7478d1e176546dd24f4"}],"database_specific":{"source":"CPE_STRING","cpe":"cpe:2.3:a:webmin:webmin:1.973:*:*:*:*:*:*:*","extracted_events":[{"introduced":"1.973"},{"last_affected":"1.973"}]}}],"versions":["1.973"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-31760.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}