CVE-2026-1196 — LOW (3.1) — White Hats Nepal

Vulnerability Description

A security vulnerability has been detected in MineAdmin 1.x/2.x. Affected is an unknown function of the file /system/getFileInfoById. Such manipulation of the argument ID leads to information disclosure. It is possible to launch the attack remotely. The attack requires a high level of complexity. The exploitability is told to be difficult. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS Score

3.1

LOW

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Mineadmin	Mineadmin	1.0

Related Weaknesses (CWE)

CWE-284 CWE-200

References

https://github.com/SourByte05/MineAdmin-Vulnerability/issues/3ExploitIssue TrackingMitigation
https://vuldb.com/?ctiid.341781Permissions RequiredVDB Entry
https://vuldb.com/?id.341781Third Party AdvisoryVDB Entry
https://vuldb.com/?submit.734273Third Party AdvisoryVDB Entry

FAQ

What is CVE-2026-1196?

CVE-2026-1196 is a vulnerability with a CVSS score of 3.1 (LOW). A security vulnerability has been detected in MineAdmin 1.x/2.x. Affected is an unknown function of the file /system/getFileInfoById. Such manipulation of the argument ID leads to information disclosu...

How severe is CVE-2026-1196?

CVE-2026-1196 has been rated LOW with a CVSS base score of 3.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2026-1196?

Check the references section above for vendor advisories and patch information. Affected products include: Mineadmin Mineadmin.