更新: 2933 个文件 - 2026-03-18 11:36:11

08-threat-intel/registry/triage/magento-open-source--da1a58eda2.json

@@ -0,0 +1,12 @@
+{
+  "canonical_id": "magento-open-source--da1a58eda2",
+  "system_id": "magento-open-source",
+  "title": "PHP tool 'Adminer' leaks passwords   2019-01-17  Update 2019-01-20: the root cause is a protocol flaw in MySQL. Adminer is a popular PHP tool to administer MySQL and PostgreSQL databases. However, it can be lured to disclose arbitrary files. Attackers can abuse that to fetch passwords for popular apps such as Magento and Wordpress, and gain con...   skimming",
+  "reasons": [
+    "missing affected/fixed version details"
+  ],
+  "candidate_count": 1,
+  "references": [
+    "https://sansec.io/research/adminer-4.6.2-file-disclosure-vulnerability"
+  ]
+}