Known exploited
Adminer
CVE published 2025-09-29
CVE-2021-21311
CVE-2021-21311 is a Server-Side Request Forgery (SSRF) vulnerability in Adminer. CISA added it to the Known Exploited Vulnerabilities (KEV) catalog on 2025-09-29, which indicates known exploitation and a need for urgent remediation planning. Organizations that use Adminer should treat this as a high-priority exposure, especially if the service is reachable from untrusted networks.