CVE-2026-1195

Low CVSS: 2.3

A weakness has been identified in MineAdmin 1.x/2.x. This impacts the function refresh of the file /system/refresh of the component JWT Token Handler. This manipulation causes insufficient verification of data authenticity. It is possible to initiate the attack remotely. The attack is considered to have high complexity. The exploitability is said to be difficult. The exploit has been made available to the public and could be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.

Vendor

Mineadmin

Product

Mineadmin

CWE

CWE-345

Yayın Tarihi

2026-01-20 01:15:56

Güncelleme

2026-02-05 20:12:24

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-345 Mineadmin LOW Mineadmin 2026

Referanslar

https://github.com/SourByte05/MineAdmin-Vulnerability/issues/4 https://vuldb.com/?ctiid.341780 https://vuldb.com/?id.341780 https://vuldb.com/?submit.734272

Benzer Kayıtlar

Low

CVE-2026-1196

A security vulnerability has been detected in MineAdmin 1.x/2.x. Affected is an unknown function of the file /system/get…

Low

CVE-2026-1197

A vulnerability was detected in MineAdmin 1.x/2.x. Affected by this vulnerability is an unknown functionality of the fil…

Medium

CVE-2026-1194

A security flaw has been discovered in MineAdmin 1.x/2.x. This affects an unknown function of the component Swagger. The…

Medium

CVE-2026-1193

A vulnerability was identified in MineAdmin 1.x/2.x. The impacted element is an unknown function of the file /system/cac…

Critical

CVE-2025-65854

Insecure permissions in the scheduled tasks feature of MineAdmin v3.x allows attackers to execute arbitrary commands and…