edit-icon download-icon

[Vulnerability notice] Privilege escalation vulnerability in phpRedisAdmin

Last Updated: Nov 17, 2017

Description

phpRedisAdmin is a simple web interface for managing and monitoring your Redis server.

Because phpRedisAdmin does not come with a permission validation feature, hackers may exploit this vulnerability to read all the content in the Redis database.

Fix

Change phpRedisAdmin to a special directory, or limit the IP addresses allowed for access.

Thank you! We've received your feedback.