Arbitrary File Read Vulnerability in Adminer versions 1.12.0 to 4.6.2

Arbitrary File Read Vulnerability in Adminer versions 1.12.0 to 4.6.2

CVE-2021-43008 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Improper Access Control in Adminer versions 1.12.0 to 4.6.2 (fixed in version 4.6.3) allows an attacker to achieve Arbitrary File Read on the remote server by requesting the Adminer to connect to a remote MySQL database.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.