CVE-2021-21311 PoC — SSRF in adminer

Source

Associated Vulnerability

Description

Adminer is an open-source database management in a single PHP file. In adminer from version 4.0.0 and before 4.7.9 there is a server-side request forgery vulnerability. Users of Adminer versions bundling all drivers (e.g. `adminer.php`) are affected. This is fixed in version 4.7.9.

Readme

# CVE-2021-21311
Adminer is an open-source database management in a single PHP file. In adminer from version 4.0.0 and before 4.7.9 there is a server-side request forgery vulnerability. Users of Adminer versions bundling all drivers (e.g. `adminer.php`) are affected. This is fixed in version 4.7.9.

File Snapshot

 [4.0K]  /data/pocs/8df5a13499d62010db7ae9b8204dcd01d569e7a1
├── [3.9K]  CVE-2021-21311.py
└── [ 300]  README.md

0 directories, 2 files

Remarks