{"vulnerability": "CVE-2021-27553", "sightings": [{"uuid": "01271929-39d7-433d-b943-74f337b244bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-27553", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/3282", "content": "#exploit\n1. CVE-2021-27552:\nSQL injection vulnerability in /Final/edit_user.php via the id parameter\nhttps://github.com/sapkota2k20/CVE-2021-27552\n\n2. CVE-2021-27553:\nIncorrect access control vulnerability that may lead to LPE through /Final/normal/dashboard.php\nhttps://github.com/sapkota2k20/CVE-2021-27553", "creation_timestamp": "2021-12-07T03:34:58.000000Z"}]}