Samsung: >> Magicinfo 9 Server >> 21.1080.0 Security Vulnerabilities
The database account and password are hardcoded, allowing login with the account to manipulate the database in MagicInfo9 Server.This issue affects MagicINFO 9 Server: less than 21.1090.1.
CVSS Score
9.8
EPSS Score
0.0
Published
2026-02-02
An unauthenticated user can upload arbitrary files to execute remote code, leading to privilege escalation in MagicInfo9 Server.
This issue affects MagicINFO 9 Server: less than 21.1090.1.
CVSS Score
8.8
EPSS Score
0.0
Published
2026-02-02
A vulnerability in MagicInfo9 Server allows authorized users to upload HTML files without authentication, leading to Stored XSS, which can result in account takeover
This issue affects MagicINFO 9 Server: less than 21.1090.1.
CVSS Score
9.8
EPSS Score
0.0
Published
2026-02-02