Primary

Context

MineAdmin Information Disclosure Vulnerability in Swagger Component

Vulnerability

A vulnerability allowing information disclosure has been identified in MineAdmin versions 1.x and 2.x. This issue arises in the Swagger component, where an unknown function leaks sensitive information. The vulnerability can be exploited remotely, and a public exploit is available.

Impact

Exploitation of this vulnerability leads to unauthorized information disclosure.

Reproduction

The vulnerability can be reproduced by sending a GET request to the '/swagger/http.json' endpoint. This request can be made without any authentication.

Remediation

It is recommended to strengthen permission validation at the Swagger interface.

Added: Jan 20, 2026, 12:18 AM

Updated: Jan 20, 2026, 12:18 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

8.7

remediation

0.0

relevance

2.1

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

8.7

remediation

0.0

relevance

2.1

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

MineAdmin Information Disclosure Vulnerability in Swagger Component

Vulnerability

Impact

Reproduction

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating