CVE-2019-15107

An issue was discovered in Webmin. The parameter old in password_change.cgi contains a command injection vulnerability. Vendor/Product: Webmin Webmin. Added to CISA KEV 2022-03-25; required action: Apply updates per vendor instructions.