CVE-2025-65854

Critical CVSS: 9.8

Insecure permissions in the scheduled tasks feature of MineAdmin v3.x allows attackers to execute arbitrary commands and execute a full account takeover.

Vendor

Mineadmin

Product

Mineadmin

CWE

CWE-94

Yayın Tarihi

2025-12-12 16:15:44

Güncelleme

2025-12-19 20:02:23

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-94 Mineadmin CRITICAL Mineadmin 2025

Referanslar

http://mineadmin.com https://gist.github.com/SourByte05/1a6c6b08ac47c5d58eb7dd4422cc23b7 https://www.mineadmin.com/

Benzer Kayıtlar

Low

CVE-2026-1195

A weakness has been identified in MineAdmin 1.x/2.x. This impacts the function refresh of the file /system/refresh of th…

Low

CVE-2026-1196

A security vulnerability has been detected in MineAdmin 1.x/2.x. Affected is an unknown function of the file /system/get…

Low

CVE-2026-1197

A vulnerability was detected in MineAdmin 1.x/2.x. Affected by this vulnerability is an unknown functionality of the fil…

Medium

CVE-2026-1194

A security flaw has been discovered in MineAdmin 1.x/2.x. This affects an unknown function of the component Swagger. The…

Medium

CVE-2026-1193

A vulnerability was identified in MineAdmin 1.x/2.x. The impacted element is an unknown function of the file /system/cac…