Exploit for #VU63006 Files or Directories Accessible to External Parties in Adminer

Exploit for #VU63006 Files or Directories Accessible to External Parties in Adminer

Published: 2022-05-11

Vulnerability identifier: #VU63006

Vulnerability risk: Medium

CVSSv3.1: 6.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C]

CVE-ID: CVE-2021-43008

CWE-ID: CWE-552

Exploitation vector: Network

Exploits in database: 1

May 11, 2022
- CVE-2021-43008-AdminerRead (Exploit tool for CVE-2021-43008 Adminer 1.0 up to 4.6.2 Arbitrary File Read vulnerability ) [Github]

Impact: Information disclosure

Vulnerable software:
Adminer
Web applications / Remote management & hosting panels

Vendor: Jakub Vrána