CVE search results

1 – 7 of 7 results

Detailed view

Sort by:

CVE-2023-45196

Medium priority

Needs evaluation

Adminer and AdminerEvo allow an unauthenticated remote attacker to cause a denial of service by connecting to an attacker-controlled service that responds with HTTP redirects. The denial of service is subject to PHP configuration...

1 affected package

adminer

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
adminer	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation

CVE-2023-45195

Medium priority

Vulnerable

Adminer and AdminerEvo are vulnerable to SSRF via database connection fields. This could allow an unauthenticated remote attacker to enumerate or access systems the attacker would not otherwise have access to. Adminer is no longer...

1 affected package

adminer

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
adminer	Vulnerable	Vulnerable	Vulnerable	Vulnerable

CVE-2021-43008

Medium priority

Needs evaluation

Improper Access Control in Adminer versions 1.12.0 to 4.6.2 (fixed in version 4.6.3) allows an attacker to achieve Arbitrary File Read on the remote server by requesting the Adminer to connect to a remote MySQL database.

1 affected package

adminer

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
adminer	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation

CVE-2021-29625

Medium priority

Some fixes available 2 of 5

Adminer is open-source database management software. A cross-site scripting vulnerability in Adminer versions 4.6.1 to 4.8.0 affects users of MySQL, MariaDB, PgSQL and SQLite. XSS is in most cases prevented by strict CSP in all...

1 affected package

adminer

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
adminer	Not affected	Not affected	Fixed	Fixed

CVE-2021-21311

Medium priority

Some fixes available 3 of 4

Adminer is an open-source database management in a single PHP file. In adminer from version 4.0.0 and before 4.7.9 there is a server-side request forgery vulnerability. Users of Adminer versions bundling all drivers...

1 affected package

adminer

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
adminer	Not affected	Not affected	Fixed	Fixed

CVE-2020-35572

Medium priority

Some fixes available 1 of 3

Adminer through 4.7.8 allows XSS via the history parameter to the default URI.

1 affected package

adminer

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
adminer	Not affected	Not affected	Fixed	Not affected

CVE-2018-7667

Medium priority

Some fixes available 1 of 4

Adminer through 4.3.1 has SSRF via the server parameter.

1 affected package

adminer

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
adminer	Not affected	Not affected	Not affected	Not affected

Search CVE reports