Search Results (Refine Search)
- Keyword (text search): cpe:2.3:a:adminer:adminer:3.0.0:*:*:*:*:*:*:*
- CPE Name Search: true
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2021-43008 |
Improper Access Control in Adminer versions 1.12.0 to 4.6.2 (fixed in version 4.6.3) allows an attacker to achieve Arbitrary File Read on the remote server by requesting the Adminer to connect to a remote MySQL database. Published: April 04, 2022; 10:15:06 PM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0: 5.0 MEDIUM |
CVE-2020-35572 |
Adminer through 4.7.8 allows XSS via the history parameter to the default URI. Published: February 09, 2021; 1:15:44 PM -0500 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2018-7667 |
Adminer through 4.3.1 has SSRF via the server parameter. Published: March 05, 2018; 2:29:00 AM -0500 |
V4.0:(not available) V3.0: 9.8 CRITICAL V2.0: 7.5 HIGH |