CVE-2023-45195
Adminer and AdminerEvo SSRFAdminer and AdminerEvo are vulnerable to SSRF via database connection fields. This could allow an unauthenticated remote attacker to enumerate or access systems the attacker would not otherwise have access to. Adminer is no longer supported, but this issue was fixed in AdminerEvo version 4.8.4.
We have discovered 392 live websites that are affected by CVE-2023-45195.
Affected Software
| Product |  Adminer |
| Category | Database Managers |
| Vulnerable Domains | 392 live websites (82% of Adminer install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 24 versions ( 67% of all versions) |
Common Weakness Enumeration
CWE-918 Server-Side Request Forgery (SSRF)Details
- Published - Jun 24, 2024
- Updated - Aug 2, 2024
CVE References
CWE References
CWE
Website Distribution by Country
Number of websites using CVE-2023-45195 United States | 116 websites |
 Czech Republic | 92 websites |
 Germany | 59 websites |
 France | 20 websites |
 Russia | 17 websites |
 Singapore | 11 websites |
 Netherlands | 10 websites |
 China | 8 websites |
 Slovakia | 7 websites |
 Lithuania | 6 websites |
Website Distribution by TLD
Number of websites using CVE-2023-45195| .com | 137 websites |
| .cz | 86 websites |
| .ru | 17 websites |
| .net | 17 websites |
| .org | 14 websites |
| .de | 13 websites |
| .eu | 10 websites |
| .nl | 7 websites |
| .io | 6 websites |
| .fr | 6 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2023-45195
Top websites that are affected by CVE-2023-45195. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| *****.********.com | Czech Republic | **,*** | |
| ******.***.pl |  Poland | ***,*** | |
| *******.pl | Poland | ***,*** | |
| ****.*****.com | United States | ***,*** | |
| *********.com | Germany | ***,*** | |
| **************.ru | Russia | ***,*** | |
| ***.*********.com | United States | ***,*** | |
| ***********.************.com | United States | ***,*** | |
| ******.*************.cz | Czech Republic | ***,*** | |
| *******.***.cn | China | ***,*** |
FAQ
CVE-2023-45195 is Server-Side Request Forgery (SSRF) in Adminer
A total of 392 websites have been identified as vulnerable to CVE-2023-45195, based on global website indexing conducted by WebTechSurvey.
The Adminer is affected by the CVE-2023-45195 vulnerability.
Adminer versions up to and including 4.8.4 are vulnerable to CVE-2023-45195.