{"id":28546,"date":"2019-08-19T20:28:13","date_gmt":"2019-08-19T20:28:13","guid":{"rendered":"https:\/\/www.threatshub.org\/blog\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\/"},"modified":"2019-08-19T20:28:13","modified_gmt":"2019-08-19T20:28:13","slug":"dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\/","title":{"rendered":"Dear Planet Earth: Patch Webmin now \u2013 zero-day exploit emerges for potential hijack hole in server control panel"},"content":{"rendered":"<p>The maintainers of <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"http:\/\/www.webmin.com\/\">Webmin<\/a> \u2013 an open-source application for system administration tasks on Unix-flavored systems \u2013 have released Webmin version 1.930 and the related Usermin version 1.780 to patch a vulnerability that can be exploited to achieve remote code execution in certain configurations.<\/p>\n<p>Joe Cooper, one of the contributing developers, announced the patch in a <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/www.virtualmin.com\/node\/66890\">blog post<\/a> over the weekend.<\/p>\n<p>&#8220;This release addresses <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2019-15107\">CVE-2019-15107<\/a>, which was disclosed earlier today,&#8221; Cooper said. &#8220;We received no advance notification of it, which is unusual and unethical on the part of the researcher who discovered it. But, in such cases there&#8217;s nothing we can do but fix it ASAP.&#8221;<\/p>\n<p>The patch also deals with several XSS issues that were responsibly disclosed, he said, noting that a bounty has been paid to the researcher who reported them.<\/p>\n<p>The bug at issue is a command injection flaw in the <code>&amp;unix_crypt<\/code> function used in the <code>password_change.cgi<\/code> file, used to check the password against the system&#8217;s <code>\/etc\/shadow<\/code> file. By adding a pipe command (&#8220;|&#8221;), an attacker can execute remote code.<\/p>\n<p>To be vulnerable, Cooper said, the Perl-based software must have the <em>Webmin -&gt; Webmin Configuration -&gt; Authentication -&gt; Password<\/em> expiry policy set to <em>Prompt users with expired passwords to enter a new one<\/em>.<\/p>\n<p>&#8220;This option is not set by default, but if it is set, it allows remote code execution,&#8221; he said.<\/p>\n<div class=\"promo_article\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/regmedia.co.uk\/2014\/09\/10\/iuyghui87y.png?x=174&amp;y=115&amp;crop=1\" width=\"174\" height=\"115\" alt=\"Rubbish bin\"><\/p>\n<h2 title=\"No RCE, but lots of Unix DDoS fun\">Webmin hole allows attackers to wipe servers clean<\/h2>\n<p><a href=\"https:\/\/www.theregister.co.uk\/2014\/09\/11\/webmin\/\"><span>READ MORE<\/span><\/a><\/div>\n<p>That may be the case for most versions \u2013 the vulnerability exists in versions 1.882 through 1.920 \u2013 but Webmin 1.890 is vulnerable in its default configuration.<\/p>\n<p>The bug appears to have been revealed <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/twitter.com\/ehakkus\/status\/1160394550323453953\">on Saturday, August 10<\/a>, by \u00d6zkan Mustafa Akku\u015f at DEF CON and to have been made available as an exploit in <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/pentest.com.tr\/exploits\/DEFCON-Webmin-1920-Unauthenticated-Remote-Command-Execution.html\">a module for the Metasploit<\/a> framework. The Webmin maintainers didn&#8217;t hear about it until Saturday, August 17, when they noticed people discussing the issue on Twitter and <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/www.reddit.com\/r\/netsec\/comments\/crk77z\/0day_remote_code_execution_for_webmin\/\">Reddit<\/a>. The CVE was created Thursday, August 15.<\/p>\n<p>Webmin has about 215,000 installations, according to a Shodan search (<a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/www.shodan.io\/search?query=http.title%3Awebmin\">account required<\/a>), and about 13,000 instances of the particularly vulnerable version 1.890.<\/p>\n<p>Tiago Henriques, developer relations lead for Microsoft Azure and founder of binaryedge.io, <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/twitter.com\/Balgan\/status\/1163469143854723072?s=20\">puts that number higher<\/a> at about 598,000 Webmin instances and 29,000 instances of version 1.890.<\/p>\n<p>According to Cooper, the malicious code was introduced into Webmin and Usermin through the project&#8217;s build infrastructure. &#8220;We&#8217;re still investigating how and when, but the exploitable code has never existed in our GitHub repositories, so we&#8217;ve rebuilt from git source on new infrastructure,&#8221; he said.<\/p>\n<p>In an email to <em>The Register<\/em>, Cooper said the malicious code \u2013 which appeared in the Sourceforge repo but not the GitHub repo \u2013 was introduced to Webmin on local package build infrastructure before it reached Sourceforge.<\/p>\n<p>&#8220;Jamie [Cameron, the project&#8217;s primary author,] would know more details, but my understanding is that it was a build server in his home that had been in service for many years,&#8221; Cooper said.<\/p>\n<p>&#8220;It was shut down a few months ago, but the build directories were copied over from backups to the new build system&#8230;so, the exploit came along with it. The new build is from new infrastructure and from a fresh git checkout; Jamie compared the exploited code against the git code, as well, looking for any other introduced code.&#8221;<\/p>\n<p>Cooper said the bug is of fairly limited risk in the version of the software (Webmin 1.920, Usermin 1.770) that immediately preceded today&#8217;s patch because it requires changes to the default configuration.<\/p>\n<p>&#8220;An earlier iteration, presumably introduced by the same attacker since it was introduced through the same vector, was more serious (in Webmin 1.890, and did not need any non-default options for a similar attack), and it took Jamie a while to find it (or even realize the reported bug was real) because it was not in git, so we were looking at, and trying to reproduce, against code that didn&#8217;t have the problem,&#8221; he explained.<\/p>\n<p><em>The Register<\/em> asked Cameron if he could shed any light on the origin of the server compromise, but he didn&#8217;t immediately respond. Cooper however suggested the project&#8217;s ability to investigate may be limited.<\/p>\n<p>&#8220;The build server that was originally exploited is no longer available for forensics, so we&#8217;re kinda left guessing about how the attacker got in, but that&#8217;s maybe less useful than just putting in place practices that make that vector impossible to exploit again,&#8221; said Cooper. \u00ae<\/p>\n<p class=\"wptl btm\"><span>Sponsored:<\/span> <a href=\"https:\/\/go.theregister.co.uk\/tl\/1842\/-7432\/balancing-consumerization-and-corporate-control?td=wptl1842\">Balancing consumerization and corporate control<\/a><\/p>\n<p>READ MORE <a href=\"http:\/\/go.theregister.com\/feed\/www.theregister.co.uk\/2019\/08\/19\/webmin_project_zero_day_patch\/\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Flawed code traced to home build system, vulnerability can be attacked in certain configs The maintainers of Webmin \u2013 an open-source application for system administration tasks on Unix-flavored systems \u2013 have released Webmin version 1.930 and the related Usermin version 1.780 to patch a vulnerability that can be exploited to achieve remote code execution in certain configurations.\u2026 READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":28547,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[63],"tags":[],"class_list":["post-28546","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-the-register"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v28.0 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Dear Planet Earth: Patch Webmin now \u2013 zero-day exploit emerges for potential hijack hole in server control panel 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Dear Planet Earth: Patch Webmin now \u2013 zero-day exploit emerges for potential hijack hole in server control panel 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2019-08-19T20:28:13+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/08\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel.png\" \/>\n\t<meta property=\"og:image:width\" content=\"174\" \/>\n\t<meta property=\"og:image:height\" content=\"115\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Dear Planet Earth: Patch Webmin now \u2013 zero-day exploit emerges for potential hijack hole in server control panel\",\"datePublished\":\"2019-08-19T20:28:13+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\\\/\"},\"wordCount\":749,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/08\\\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel.png\",\"articleSection\":[\"The Register\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\\\/\",\"name\":\"Dear Planet Earth: Patch Webmin now \u2013 zero-day exploit emerges for potential hijack hole in server control panel 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/08\\\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel.png\",\"datePublished\":\"2019-08-19T20:28:13+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/08\\\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel.png\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/08\\\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel.png\",\"width\":174,\"height\":115},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Dear Planet Earth: Patch Webmin now \u2013 zero-day exploit emerges for potential hijack hole in server control panel\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Dear Planet Earth: Patch Webmin now \u2013 zero-day exploit emerges for potential hijack hole in server control panel 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\/","og_locale":"en_US","og_type":"article","og_title":"Dear Planet Earth: Patch Webmin now \u2013 zero-day exploit emerges for potential hijack hole in server control panel 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2019-08-19T20:28:13+00:00","og_image":[{"width":174,"height":115,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/08\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel.png","type":"image\/png"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Dear Planet Earth: Patch Webmin now \u2013 zero-day exploit emerges for potential hijack hole in server control panel","datePublished":"2019-08-19T20:28:13+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\/"},"wordCount":749,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/08\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel.png","articleSection":["The Register"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\/","url":"https:\/\/www.threatshub.org\/blog\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\/","name":"Dear Planet Earth: Patch Webmin now \u2013 zero-day exploit emerges for potential hijack hole in server control panel 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/08\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel.png","datePublished":"2019-08-19T20:28:13+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/08\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel.png","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/08\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel.png","width":174,"height":115},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/dear-planet-earth-patch-webmin-now-zero-day-exploit-emerges-for-potential-hijack-hole-in-server-control-panel\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"Dear Planet Earth: Patch Webmin now \u2013 zero-day exploit emerges for potential hijack hole in server control panel"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/28546","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=28546"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/28546\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/28547"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=28546"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=28546"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=28546"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}