A vulnerability classified as critical has been found in MINMAX. This affects an unknown part of the file /newsDia.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely.

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-36535