Lucene search
Veracode Vulnerability DatabaseVERACODE:47771HistoryJun 27, 2024 - 6:12 a.m.
Server-Side Request Forgery (SSRF)
2024-06-2706:12:10
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
server-side request forgery
ssrf
user-supplied input
database connection fields
remote attacker
CVSS4
6.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/SC:L/VI:N/SI:N/VA:N/SA:N/AU:Y
AI Score
7
Confidence
High
vrana/adminer is vulnerable to Server-Side Request Forgery (SSRF). The vulnerability is due to the improper handling of user-supplied input in database connection fields. This allows an unauthenticated remote attacker to enumerate or access systems they would not otherwise have access to.
Related
osv
osv
CVE-2023-45195
2024-06-24 22:15:10
ubuntucve
ubuntucve
CVE-2023-45195
2024-06-24 00:00:00
cve
cve
CVE-2023-45195
2024-06-24 22:15:10
cvelist
cvelist
CVE-2023-45195 Adminer and AdminerEvo SSRF
2024-06-24 21:06:09
nvd
nvd
CVE-2023-45195
2024-06-24 22:15:10
debiancve
debiancve
CVE-2023-45195
2024-06-24 22:15:10
vulnrichment
vulnrichment
CVE-2023-45195 Adminer and AdminerEvo SSRF
2024-06-24 21:06:09
CVSS4
6.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/SC:L/VI:N/SI:N/VA:N/SA:N/AU:Y
AI Score
7
Confidence
High
Related for VERACODE:47771