{"uuid": "a1c4afd1-4aca-4778-a5f8-e72e3edafcb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-27928", "type": "published-proof-of-concept", "source": "https://t.me/arm1tage/130", "content": "\u2014Medium Machines\u2014\n\nForge - SSRF, Pdb Priv Esc\nhttps://medium.com/@futurembt/forge-htb-write-up-forge-hack-the-box-walkthrough-1b358c25f4ab\n\nMango - SSL-cert subdomain reveal, MongoDB Injection, jjs Priv Esc\nhttps://0xdf.gitlab.io/2020/04/18/htb-mango.html\n\nLogForge - Tomcat/9.0.31, Log4J\nhttps://0xdf.gitlab.io/2021/12/29/htb-logforge.html\n\nShibboleth - Zabbix, 623 UDP (https://book.hacktricks.xyz/pentesting/623-udp-ipmi), mariadb 10.3.25 CVE-2021-27928 (https://www.exploit-db.com/exploits/49765, https://github.com/Al1ex/CVE-2021-27928) \nhttps://0xdf.gitlab.io/2022/04/02/htb-shibboleth.html\n\n\n#hackthebox #ctf", "creation_timestamp": "2022-06-18T10:31:44.000000Z"}