Headline
CVE-2022-0824: Foreign module may need a check · webmin/webmin@39ea464
Improper Access Control to Remote Code Execution in GitHub repository webmin/webmin prior to 1.990.
Permalink
Browse files
Foreign module may need a check
- Loading branch information
1 parent b374ad7 commit 39ea464f0c40b325decd6a5bfb7833fa4a142e38
Showing with 2 additions and 1 deletion.
- +2 −1 web-lib-funcs.pl
@@ -5144,7 +5144,8 @@ sub init_config
}
if ($module_name && !$main::no_acl_check &&
!defined($ENV{’FOREIGN_MODULE_NAME’}) &&
(!defined($ENV{’FOREIGN_MODULE_NAME’}) ||
defined($ENV{’FOREIGN_MODULE_SEC_CHECK’})) &&
$main::webmin_script_type eq ‘web’) {
Check if the HTTP user can access this module
if (!&foreign_available($module_name)) {
0 comments on commit 39ea464
Please sign in to comment.