Published: 05/04/2022 Updated: 30/09/2022

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Improper Access Control in Adminer versions 1.12.0 to 4.6.2 (fixed in version 4.6.3) allows an malicious user to achieve Arbitrary File Read on the remote server by requesting the Adminer to connect to a remote MySQL database.

Vulnerable Product	Search on Vulmon	Subscribe to Product
adminer adminer
debian debian linux 9.0

Exploit tool for CVE-2021-43008 Adminer 1.0 up to 4.6.2 Arbitrary File Read vulnerability

CVE-2021-43008 - AdminerRead Exploit tool for Adminer 10 up to 462 Arbitrary File Read vulnerability Installation git clone githubcom/p0dalirius/AdminerRead cd AdminerRead sudo python3 setuppy install Usage

https://sansec.io/research/adminer-4.6.2-file-disclosure-vulnerability https://github.com/vrana/adminer/releases/tag/v4.6.3 https://www.adminer.org/https://podalirius.net/en/cves/2021-43008/https://lists.debian.org/debian-lts-announce/2022/05/msg00012.html https://nvd.nist.gov https://github.com/p0dalirius/CVE-2021-43008-AdminerRead https://www.cisa.gov/uscert/ics/advisories/icsa-22-130-01

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2021-43008

Vulnerability Summary

Vulnerability Trend

ICS Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect