Lucene search
K

69 matches found

CVE
CVE
added 2026/01/20 12:32 a.m.18 views

CVE-2026-1197

MineAdmin 1.x/2.x is affected by CVE-2026-1197 via information disclosure in /system/downloadById when the ID parameter is manipulated. The vulnerability is exploitable remotely with high attack complexity; public exploit appears available and the vendor has not responded to disclosure. Connected...

3.1CVSS4.9AI score0.00332EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2026/01/20 12:32 a.m.20 views

CVE-2026-1196 MineAdmin getFileInfoById information disclosure

A security vulnerability has been detected in MineAdmin 1.x/2.x. Affected is an unknown function of the file /system/getFileInfoById. Such manipulation of the argument ID leads to information disclosure. It is possible to launch the attack remotely. The attack requires a high level of complexity...

3.1CVSS0.00409EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/01/20 12:32 a.m.5 views

CVE-2026-1196 MineAdmin getFileInfoById information disclosure

A security vulnerability has been detected in MineAdmin 1.x/2.x. Affected is an unknown function of the file /system/getFileInfoById. Such manipulation of the argument ID leads to information disclosure. It is possible to launch the attack remotely. The attack requires a high level of complexity...

3.1CVSS4.9AI score0.00409EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/01/20 12:32 a.m.2 views

CVE-2026-1196

A security vulnerability has been detected in MineAdmin 1.x/2.x. Affected is an unknown function of the file /system/getFileInfoById. Such manipulation of the argument ID leads to information disclosure. It is possible to launch the attack remotely. The attack requires a high level of complexity...

5.3CVSS4.9AI score0.00409EPSS
Exploits1References4
CVE
CVE
added 2026/01/20 12:32 a.m.17 views

CVE-2026-1196

MineAdmin 1.x/2.x vulnerability: manipulating the argument ID in /system/getFileInfoById leads to information disclosure. Exploitable remotely with high complexity; likely confidentiality impact. Publicly disclosed exploit; no remediation details provided in the connected documents.

5.3CVSS4.9AI score0.00409EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2026/01/20 12:30 a.m.5 views

GHSA-7F7M-83R3-P644 MineAdmin May Expose Sensitive Information to an Unauthorized Actor

A security flaw has been discovered in MineAdmin 1.x/2.x. This affects an unknown function of the component Swagger. The manipulation results in information disclosure. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks. The vendor was...

6.9CVSS5AI score0.00685EPSS
Exploits1References6
Snyk
Snyk
added 2026/01/20 12:30 a.m.4 views

Incorrect Privilege Assignment

Overview mineadmin/mineadmin is a Quickly build a background management system for web applications Affected versions of this package are vulnerable to Incorrect Privilege Assignment via the view interface in the /system/cache/view file. An attacker can gain unauthorized access to sensitive...

8.8CVSS5.6AI score0.0032EPSS
Exploits1References2
Snyk
Snyk
added 2026/01/20 12:30 a.m.2 views

Files or Directories Accessible to External Parties

Overview mineadmin/mineadmin is a Quickly build a background management system for web applications Affected versions of this package are vulnerable to Files or Directories Accessible to External Parties via the Swagger component. An attacker can access sensitive information by sending crafted...

7.5CVSS5.6AI score0.00685EPSS
Exploits1References2
OSV
OSV
added 2026/01/20 12:30 a.m.6 views

GHSA-23HH-2F47-3P4H MineAdmin has Incorrect Privilege Assignment

A vulnerability was identified in MineAdmin 1.x/2.x. The impacted element is an unknown function of the file /system/cache/view of the component View Interface. The manipulation leads to improper authorization. The attack is possible to be carried out remotely. The exploit is publicly available a...

6.3CVSS6AI score0.0032EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2026/01/20 12:30 a.m.9 views

MineAdmin May Expose Sensitive Information to an Unauthorized Actor

A security flaw has been discovered in MineAdmin 1.x/2.x. This affects an unknown function of the component Swagger. The manipulation results in information disclosure. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks. The vendor was...

7.5CVSS5AI score0.00685EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/01/20 12:30 a.m.10 views

MineAdmin has Incorrect Privilege Assignment

A vulnerability was identified in MineAdmin 1.x/2.x. The impacted element is an unknown function of the file /system/cache/view of the component View Interface. The manipulation leads to improper authorization. The attack is possible to be carried out remotely. The exploit is publicly available a...

8.8CVSS5AI score0.0032EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2026/01/20 12:15 a.m.7 views

CVE-2026-1194

A security flaw has been discovered in MineAdmin 1.x/2.x. This affects an unknown function of the component Swagger. The manipulation results in information disclosure. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks. The vendor was...

7.5CVSS0.00685EPSS
Exploits1References4
OSV
OSV
added 2026/01/20 12:15 a.m.5 views

CVE-2026-1194

A security flaw has been discovered in MineAdmin 1.x/2.x. This affects an unknown function of the component Swagger. The manipulation results in information disclosure. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks. The vendor was...

7.5CVSS5.3AI score
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/01/20 12:2 a.m.5 views

CVE-2026-1195 MineAdmin JWT Token refresh data authenticity

A weakness has been identified in MineAdmin 1.x/2.x. This impacts the function refresh of the file /system/refresh of the component JWT Token Handler. This manipulation causes insufficient verification of data authenticity. It is possible to initiate the attack remotely. The attack is considered ...

5CVSS4.9AI score0.00216EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/01/20 12:2 a.m.5 views

CVE-2026-1195

A weakness has been identified in MineAdmin 1.x/2.x. This impacts the function refresh of the file /system/refresh of the component JWT Token Handler. This manipulation causes insufficient verification of data authenticity. It is possible to initiate the attack remotely. The attack is considered ...

7.5CVSS4.9AI score0.00216EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/01/20 12:2 a.m.29 views

CVE-2026-1195 MineAdmin JWT Token refresh data authenticity

A weakness has been identified in MineAdmin 1.x/2.x. This impacts the function refresh of the file /system/refresh of the component JWT Token Handler. This manipulation causes insufficient verification of data authenticity. It is possible to initiate the attack remotely. The attack is considered ...

5CVSS0.00216EPSS
Exploits1References4
CVE
CVE
added 2026/01/20 12:2 a.m.13 views

CVE-2026-1195

Summary: CVE-2026-1195 affects MineAdmin 1.x/2.x, specifically the JWT Token Handler’s /system/refresh function. The issue is insufficient verification of data authenticity, enabling a remote attack with high complexity; exploitation has been publicly disclosed. Multiple sources consistently desc...

7.5CVSS4.9AI score0.00216EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/20 12:0 a.m.12 views

PT-2026-3521

Name of the Vulnerable Software and Affected Versions MineAdmin versions 1.x through 2.x Description A flaw exists in MineAdmin that allows information disclosure. This occurs due to manipulation of the ID argument within the /system/downloadById file. The attack can be initiated remotely and is...

3.1CVSS4.5AI score0.00332EPSS
Exploits1References7
CNNVD
CNNVD
added 2026/01/20 12:0 a.m.11 views

MineAdmin Data Forgery Vulnerability

MineAdmin is an open-source permission management system developed by MineAdmin. Versions 1.x and 2.x of MineAdmin have a vulnerability related to data falsification, which stems from insufficient verification of data authenticity...

7.5CVSS6AI score0.00216EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/01/20 12:0 a.m.9 views

PT-2026-3519

Name of the Vulnerable Software and Affected Versions MineAdmin versions 1.x and 2.x Description A weakness exists due to insufficient verification of data authenticity within the JWT Token Handler component. This issue affects the refresh function of the /system/refresh file. The attack can be...

7.5CVSS5.7AI score0.00216EPSS
Exploits1References10
Rows per page
Query Builder