Description
Adminer (formerly phpMinAdmin) is a full-featured database management tool written in PHP. Users of Adminer versions bundling all drivers (e.g. adminer.php) are vulnerable to a Server Side Request Forgery (SSRF) vulnerability that affects the Elasticsearch login module.
Remediation
Upgrade to the latest version of adminer. This issue was fixed in version 4.7.9.
References
Related Vulnerabilities
WordPress 3.5 Multiple Vulnerabilities (1.5 - 3.5)
WebLogic Server Side Request Forgery
WordPress Plugin Visualizer:Tables and Charts Manager for WordPress Multiple Vulnerabilities (3.3.0)
phpBB Server-Side Request Forgery (SSRF) Vulnerability (CVE-2020-8226)
WordPress Plugin Flog Server-Side Request Forgery (1.0beta3)