CVE-2019-15107: Webmin Command Injection Vulnerability. An issue was

Webmin Command Injection Vulnerability. An issue was discovered in Webmin. The parameter old in password_change.cgi contains a command injection vulnerability.

• CISA KEV-listed (remediation due 2022-04-15)
• used in ransomware campaigns
• EPSS 94.5% (100.0% percentile)

Browse the CVE database

Read the full analysis on IntelFusions