Home
affected
Description
TheLibrarians web_fetch tool can be used to retrieve the Adminer interface content, which can then be used to log into the internal TheLibrarian backend system. The vendor has fixed the vulnerability in all affected versions.
Problem types
CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere
Product status
References
mindgard.ai/blog/thelibrarian-ios-ai-security-disclosure