CVE-2021-43008
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2021-43008
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-43008.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2021-43008
- Aliases
- Downstream
- Published
- 2022-04-05T02:15:06.887Z
- Modified
- 2025-11-20T11:55:58.734224Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Improper Access Control in Adminer versions 1.12.0 to 4.6.2 (fixed in version 4.6.3) allows an attacker to achieve Arbitrary File Read on the remote server by requesting the Adminer to connect to a remote MySQL database.
- References
Affected packages
Git / github.com/vrana/adminer
Affected ranges
- Type
- GIT
- Repo
- https://github.com/vrana/adminer
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
v3.*
v3.0.0
v3.0.1
v3.1.0
v3.2.0
v3.2.1
v3.2.2
v3.3.0
v3.3.1
v3.3.2
v3.3.3
v3.3.4
v3.4.0
v3.5.0
v3.5.1
v3.6.0
v3.6.1
v3.6.2
v3.6.3
v3.6.4
v3.7.0
v3.7.1
v4.*
v4.0.0
v4.0.1
v4.0.2
v4.0.3
v4.1.0
v4.2.0
v4.2.1
v4.2.2
v4.2.3
v4.2.4
v4.2.5
v4.3.0
v4.3.1
v4.4.0
v4.5.0
v4.6.0
v4.6.1
v4.6.2