Improper Access Control in Adminer versions 1.12.0 to 4.6.2 (fixed in version 4.6.3) allows an malicious user to achieve Arbitrary File Read on the remote server by requesting the Adminer to connect to a remote MySQL database.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
adminer adminer |
||
debian debian linux 9.0 |