Lucene search
K

32 matches found

Cvelist
Cvelist
added 2024/05/30 2:14 a.m.48 views

CVE-2024-5514 MinMax CMS - Hidden Functionality

MinMax CMS from MinMax Digital Technology contains a hidden administrator account with a fixed password that cannot be removed or disabled from the management interface. Remote attackers who obtain this account can bypass IP access control restrictions and log in to the backend system without bei...

9.8CVSS9.7AI score0.00653EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/05/30 2:14 a.m.16 views

CVE-2024-5514 MinMax CMS - Hidden Functionality

MinMax CMS from MinMax Digital Technology contains a hidden administrator account with a fixed password that cannot be removed or disabled from the management interface. Remote attackers who obtain this account can bypass IP access control restrictions and log in to the backend system without bei...

9.8CVSS7.2AI score0.00653EPSS
Exploits0References4
CVE
CVE
added 2024/05/30 2:14 a.m.86 views

CVE-2024-5514

CVE-2024-5514 affects MinMax CMS by MinMax Digital Technology and involves a hidden administrative account with a fixed password that cannot be removed or disabled via the management interface. This allows remote attackers to bypass IP-based access controls and log in to the backend without being...

9.8CVSS9.7AI score0.00653EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/05/30 12:0 a.m.5 views

PT-2024-3984 · Unknown · Minmax Cms

Name of the Vulnerable Software and Affected Versions: MinMax CMS affected versions not specified Description: The issue is related to a hidden administrator account with a fixed password in MinMax CMS. This account cannot be removed or disabled from the management interface, allowing remote...

9.8CVSS7.5AI score0.00653EPSS
Exploits0References11
CNVD
CNVD
added 2022/06/16 12:0 a.m.29 views

MINMAX SQL Injection Vulnerability

MINMAX is a high power density 10W DC-DC converter for space-critical applications from China-based MINMAX. MINMAX is vulnerable to SQL injection, which can be exploited by attackers to cause a sql injection issue through manipulation of the id parameter in /newsDia.php...

8.8CVSS4.2AI score0.00611EPSS
Exploits0References1
NVD
NVD
added 2022/06/07 6:15 p.m.17 views

CVE-2020-36535

A vulnerability classified as critical has been found in MINMAX. This affects an unknown part of the file /newsDia.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely...

8.8CVSS0.00611EPSS
Exploits0References1
Prion
Prion
added 2022/06/07 6:15 p.m.9 views

Sql injection

A vulnerability classified as critical has been found in MINMAX. This affects an unknown part of the file /newsDia.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely...

6.5CVSS8.9AI score0.00611EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/06/07 12:0 a.m.4 views

MINMAX SQL注入漏洞

MINMAX is a high power density 10W DC-DC converter for space-critical applications from China-based MINMAX. MINMAX is vulnerable to SQL injection, which can be exploited by attackers to cause a sql injection issue through manipulation of the id parameter in /newsDia.php...

8.8CVSS5.8AI score0.00611EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/06/03 7:10 p.m.3 views

CVE-2020-36535 MINMAX newsDia.php sql injection

A vulnerability classified as critical has been found in MINMAX. This affects an unknown part of the file /newsDia.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely...

6.3CVSS9.2AI score0.00611EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/06/03 7:10 p.m.18 views

CVE-2020-36535 MINMAX newsDia.php sql injection

A vulnerability classified as critical has been found in MINMAX. This affects an unknown part of the file /newsDia.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely...

6.3CVSS9AI score0.00611EPSS
Exploits0References1
CVE
CVE
added 2022/06/03 7:10 p.m.44 views

CVE-2020-36535

MINMAX is affected by an SQL injection vulnerability in the newsDia.php page, triggered by manipulating the id parameter. Multiple connected sources (NVD, Red Hat, CNVD/CNNVD, CVE list, PRION, and others) describe this as a critical flaw that can be exploited remotely, impacting the handling of a...

8.8CVSS7.7AI score0.00611EPSS
Exploits0References1Affected Software1
Packet Storm
Packet Storm
added 2011/09/14 12:0 a.m.33 views

Minmax SQL Injection

Exploit Title: minmax SQL INJECTION Vulnerabilities Date: 14/09/2011 Author: nGa Sa Lu N-S-L Service Link: http://minmax.biz Tested on: Vista Google Dork: intext:"Design by MINMAX." www.site.com/productsinfo.php?ID=SQL SQL Error Statement You have an error in your SQL syntax; check the manual tha...

0.3AI score
Exploits0
Rows per page
Query Builder