CVE-2021-21311
Description
Adminer is an open-source database management in a single PHP file. In adminer from version 4.0.0 and before 4.7.9 there is a server-side request forgery vulnerability. Users of Adminer versions bundling all drivers (e.g. adminer.php
) are affected. This is fixed in version 4.7.9.
GitHub, Inc.
Severity: HIGH
CVE ID: CVE-2021-21311
CVSS Score: 7.2
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N
Proof Of Concept
Nuclei Templates for CVE-2021-21311
Refrence: Project Discovery GitHub
llhala
Adminer is an open-source database management in a single PHP file. In adminer from version 4.0.0 and before 4.7.9 there is a server-side request forgery vulnerability. Users of Adminer versions bundling all drivers (e.g. adminer.php
) are affected. This is fixed in version 4.7.9.
Refrence: GitHub
omoknooni
Refrence: GitHub