{"uuid": "c8e01b1b-ebf5-49d9-ba3c-d31910329fb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-27552", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/3282", "content": "#exploit\n1. CVE-2021-27552:\nSQL injection vulnerability in /Final/edit_user.php via the id parameter\nhttps://github.com/sapkota2k20/CVE-2021-27552\n\n2. CVE-2021-27553:\nIncorrect access control vulnerability that may lead to LPE through /Final/normal/dashboard.php\nhttps://github.com/sapkota2k20/CVE-2021-27553", "creation_timestamp": "2021-12-07T03:34:58.000000Z"}