Post Revolution version 0.8.0c suffers from cross site request forgery, cross site scripting, and denial of service vulnerabilities.
c326ab8cc2255d5e582a5a5c103cc9b9e6e64ac1effb215d3c8e08c05d0b1799
Webmin versions 1.540 and below suffer from a cross site scripting vulnerability that allows for remote command execution.
79ce7134a3ef970d8a21e29d564f22919b1a69160445b954a449d17e00f80f9d