Usermin through 1.850 allows a remote authenticated user to execute OS commands via command injection in a filename for the GPG module.Referenceshttps://github.com/ly1g3/webmin-usermin-vulnerabilitieshttps://webmin.com/uchanges.html
