CVE-2026-1197 | MineAdmin 1.x/2.x /system/downloadById ID information disclosure

Inserito da Angelo Barbosa | Gen 19, 2026 | CVE

A vulnerability classified as problematic has been found in MineAdmin 1.x/2.x. Affected by this vulnerability is an unknown functionality of the file /system/downloadById. Performing a manipulation of the argument ID results in information disclosure.

This vulnerability is identified as CVE-2026-1197. The attack can be initiated remotely. Additionally, an exploit exists.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-1197 | MineAdmin 1.x/2.x /system/downloadById ID information disclosure

Post correlati

CVE-2024-40412 | Tenda AX12 v1.0 22.03.01.46 sub_42E410 deviceList stack-based overflow

CVE-2024-39019 | idcCMS 1.35 idcProData_deal.php cross-site request forgery

CVE-2025-5735 | TOTOLINK X15 1.0.0-B20230714.1105 HTTP POST Request /boafrm/formSetLg submit-url buffer overflow

CVE-2023-40457 | Extreme Networks ExtremeXOS 30.7.1.1 BGP Daemon denial of service