Harry1080

Name of the Vulnerable Software and Affected Versions: MiniCMS version 1.10 Description: The issue concerns a security problem where an attacker can execute malicious scripts. This is achieved through the `site link` parameter in the 'mc-admin/conf.php' endpoint. Recommendations: For MiniCMS version 1.10, avoid using the `site link` parameter in the 'mc-admin/conf.php' endpoint until the issue is resolved. As a temporary workaround, consider restricting access to the 'mc-admin/conf.php' endpoint to minimize the risk of exploitation.