← back
CVE-2021-43008

CVE-2021-43008

EPSS 13.6%
Improper Access Control in Adminer versions 1.12.0 to 4.6.2 (fixed in version 4.6.3) allows an attacker to achieve Arbitrary File Read on the remote server by requesting the Adminer to connect to a remote MySQL database.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/vrana/adminer/releases/tag/v4.6.3https://lists.debian.org/debian-lts-announce/2022/05/msg00012.htmlhttps://podalirius.net/en/cves/2021-43008/https://sansec.io/research/adminer-4.6.2-file-disclosure-vulnerabilityhttps://www.adminer.org/