Security
Headlines

Headlines Latest CVEs

Headline

GHSA-x6mh-4w8x-p34v: MineAdmin has an insecure default password

Insecure permissions in the scheduled tasks feature of MineAdmin v3.x allows attackers to execute arbitrary commands and execute a full account takeover.

10 hours ago

Skip to content

Navigation Menu

- AI CODE CREATION
  - GitHub CopilotWrite better code with AI
  - GitHub SparkBuild and deploy intelligent apps
  - GitHub ModelsManage and compare prompts
  - MCP RegistryNewIntegrate external tools

View all features

Pricing

Provide feedback

Saved searches****Use saved searches to filter your results more quickly

Sign up

Appearance settings

GitHub Advisory Database
GitHub Reviewed
CVE-2025-65854

MineAdmin has an insecure default password

Critical severity GitHub Reviewed Published Dec 12, 2025 to the GitHub Advisory Database • Updated Dec 12, 2025

Package

composer mineadmin/mineadmin (Composer)

Affected versions

<= 3.0.9

Description

Published to the GitHub Advisory Database

Dec 12, 2025

Last updated

Dec 12, 2025

EPSS score

ghsa: Latest News

GHSA-vx9q-rhv9-3jvg: aircompressor Snappy and LZ4 Java-based decompressor implementation can leak information from reused output buffer

7 hours ago

GHSA-3jp5-5f8r-q2wg: Vuetify has a Prototype Pollution vulnerability

7 hours ago

GHSA-9w3x-85mw-4fwm: Vuetify has a Cross-site Scripting (XSS) vulnerability in the VDatePicker component

7 hours ago

GHSA-m5gv-vj3f-6v2p: Liferay Portal and DXP Instance Admin can execute code using Objects Actions and Validations

7 hours ago

GHSA-55jh-84jv-8mx8: Lightning Flow Scanner Vulnerable to Code Injection via Unsafe Use of `new Function()` in APIVersion Rule

8 hours ago