32 matches found
CVE-2024-5514 MinMax CMS - Hidden Functionality
MinMax CMS from MinMax Digital Technology contains a hidden administrator account with a fixed password that cannot be removed or disabled from the management interface. Remote attackers who obtain this account can bypass IP access control restrictions and log in to the backend system without bei...
CVE-2024-5514 MinMax CMS - Hidden Functionality
MinMax CMS from MinMax Digital Technology contains a hidden administrator account with a fixed password that cannot be removed or disabled from the management interface. Remote attackers who obtain this account can bypass IP access control restrictions and log in to the backend system without bei...
CVE-2024-5514
CVE-2024-5514 affects MinMax CMS by MinMax Digital Technology and involves a hidden administrative account with a fixed password that cannot be removed or disabled via the management interface. This allows remote attackers to bypass IP-based access controls and log in to the backend without being...
PT-2024-3984 · Unknown · Minmax Cms
Name of the Vulnerable Software and Affected Versions: MinMax CMS affected versions not specified Description: The issue is related to a hidden administrator account with a fixed password in MinMax CMS. This account cannot be removed or disabled from the management interface, allowing remote...
MINMAX SQL Injection Vulnerability
MINMAX is a high power density 10W DC-DC converter for space-critical applications from China-based MINMAX. MINMAX is vulnerable to SQL injection, which can be exploited by attackers to cause a sql injection issue through manipulation of the id parameter in /newsDia.php...
CVE-2020-36535
A vulnerability classified as critical has been found in MINMAX. This affects an unknown part of the file /newsDia.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely...
Sql injection
A vulnerability classified as critical has been found in MINMAX. This affects an unknown part of the file /newsDia.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely...
MINMAX SQL注入漏洞
MINMAX is a high power density 10W DC-DC converter for space-critical applications from China-based MINMAX. MINMAX is vulnerable to SQL injection, which can be exploited by attackers to cause a sql injection issue through manipulation of the id parameter in /newsDia.php...
CVE-2020-36535 MINMAX newsDia.php sql injection
A vulnerability classified as critical has been found in MINMAX. This affects an unknown part of the file /newsDia.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely...
CVE-2020-36535 MINMAX newsDia.php sql injection
A vulnerability classified as critical has been found in MINMAX. This affects an unknown part of the file /newsDia.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely...
CVE-2020-36535
MINMAX is affected by an SQL injection vulnerability in the newsDia.php page, triggered by manipulating the id parameter. Multiple connected sources (NVD, Red Hat, CNVD/CNNVD, CVE list, PRION, and others) describe this as a critical flaw that can be exploited remotely, impacting the handling of a...
Minmax SQL Injection
Exploit Title: minmax SQL INJECTION Vulnerabilities Date: 14/09/2011 Author: nGa Sa Lu N-S-L Service Link: http://minmax.biz Tested on: Vista Google Dork: intext:"Design by MINMAX." www.site.com/productsinfo.php?ID=SQL SQL Error Statement You have an error in your SQL syntax; check the manual tha...