VulnerableCode Package Details - pkg:composer/vrana/adminer@4.2.1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:composer/vrana/adminer@4.2.1

Essentials
History (4)

purl	pkg:composer/vrana/adminer@4.2.1

Next non-vulnerable version	4.8.1
Latest non-vulnerable version	5.4.2
Risk

Vulnerabilities affecting this package (4)

Vulnerability	Summary	Fixed by
VCID-5p1u-z3kt-5beu Aliases: CVE-2021-43008 GHSA-rxfq-3vpc-vv72	Files or Directories Accessible to External Parties in Adminer	4.6.3 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-78j5-x2za-jycs Aliases: CVE-2021-21311 GHSA-x5r2-hj5c-8jx6	Adminer is an open-source database management in a single PHP file. In adminer from version 4.0.0 and before 4.7.9 there is a server-side request forgery vulnerability. Users of Adminer versions bundling all drivers (e.g. `adminer.php`) are affected. This is fixed in version 4.7.9.	4.7.9 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-ag7r-s3jh-bkaz Aliases: CVE-2018-7667 GHSA-43f8-p5w3-5m25	Adminer through 4.3.1 has SSRF via the server parameter.	4.4.0 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 4.7.8 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-p2d1-95dg-hyh9 Aliases: CVE-2020-35572 GHSA-9pgx-gcph-mpqr	Adminer through 4.7.8 allows XSS via the history parameter to the default URI.	4.7.9 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-12T18:04:08.846070+00:00	GitLab Importer	Affected by	VCID-5p1u-z3kt-5beu	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/vrana/adminer/CVE-2021-43008.yml	38.6.0
2026-06-12T17:33:24.873377+00:00	GitLab Importer	Affected by	VCID-78j5-x2za-jycs	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/vrana/adminer/CVE-2021-21311.yml	38.6.0
2026-06-12T17:33:20.383080+00:00	GitLab Importer	Affected by	VCID-p2d1-95dg-hyh9	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/vrana/adminer/CVE-2020-35572.yml	38.6.0
2026-06-12T16:57:58.262977+00:00	GitLab Importer	Affected by	VCID-ag7r-s3jh-bkaz	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/vrana/adminer/CVE-2018-7667.yml	38.6.0