Pi-hole (AdminLTE) Data Breach
Pi-hole (AdminLTE) experienced a data breach that was reported on December 10, 2021. Pi-hole Web v4.3.2 (aka AdminLTE) allows Remote Code Execution by privileged dashboard users via a crafted DHCP static lease.
Key Facts
- Organization
- Pi-hole (AdminLTE)
- Date Reported
- December 10, 2021
- Incident Type
- web app exploit
- Industry
- Technology
- Severity Score
- 5/10
- Confidence Level
- high
- Tags
Source
View original source - External link to primary source documentation
Understanding web app exploit Incidents
Web application exploits target vulnerabilities in websites and APIs. Secure development practices, WAFs, and penetration testing protect against these attacks.