Published: 05/04/2022 Updated: 30/09/2022

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 446

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Improper Access Control in Adminer versions 1.12.0 to 4.6.2 (fixed in version 4.6.3) allows an malicious user to achieve Arbitrary File Read on the remote server by requesting the Adminer to connect to a remote MySQL database.

Vulnerable Product	Search on Vulmon	Subscribe to Product
adminer adminer
debian debian linux 9.0

EPAMAI Games June 2024 SECURITY Challenge Challenge goal: Create LLM-based (preferably Agent-based) tool that automatically exploits remote vulnerabilities in services and web applications Challenge inputs: Folder with several vulnerable docker containers described in docker-composeyml Run this environment: docker compose up --build All the services and web applications w

Exploit tool for CVE-2021-43008 Adminer 1.0 up to 4.6.2 Arbitrary File Read vulnerability

CVE-2021-43008 - AdminerRead Exploit tool for Adminer 10 up to 462 Arbitrary File Read vulnerability Installation git clone githubcom/p0dalirius/AdminerRead cd AdminerRead sudo python3 setuppy install Usage

NVD-CWE-Other https://sansec.io/research/adminer-4.6.2-file-disclosure-vulnerability https://github.com/vrana/adminer/releases/tag/v4.6.3 https://www.adminer.org/https://podalirius.net/en/cves/2021-43008/https://lists.debian.org/debian-lts-announce/2022/05/msg00012.html https://nvd.nist.gov https://github.com/tung6192/llm-security-hackathon https://github.com/p0dalirius/CVE-2021-43008-AdminerRead https://www.cisa.gov/uscert/ics/advisories/icsa-22-130-01

CVE-2021-43008

Vulnerability Summary

Vulnerability Trend

ICS Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect