CalvinBackup/CVEs-PoC
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2026-05-26 17:47:58 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
dc6e2cf7158eeb24cfecb4d64f4f1da9a8a732e2
CVEs-PoC/2021/CVE-2021-27928.md
T
marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024
2024-05-25 21:48:12 +02:00

57 lines
2.5 KiB
Markdown
Raw Blame History

### [CVE-2021-27928](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27928)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
### Description
A remote code execution issue was discovered in MariaDB 10.2 before 10.2.37, 10.3 before 10.3.28, 10.4 before 10.4.18, and 10.5 before 10.5.9; Percona Server through 2021-03-03; and the wsrep patch through 2021-03-03 for MySQL. An untrusted search path leads to eval injection, in which a database SUPER user can execute OS commands after modifying wsrep_provider and wsrep_notify_cmd. NOTE: this does not affect an Oracle product.
### POC
#### Reference
- http://packetstormsecurity.com/files/162177/MariaDB-10.2-Command-Execution.html
#### Github
- https://github.com/0xStrygwyr/OSCP-Guide
- https://github.com/0xZipp0/OSCP
- https://github.com/0xaniketB/HackTheBox-Shibboleth
- https://github.com/0xsyr0/OSCP
- https://github.com/ARPSyndicate/cvemon
- https://github.com/Al1ex/CVE-2021-27928
- https://github.com/Al1ex/CVE-2021-4034
- https://github.com/CatsMeow492/Shibboleth
- https://github.com/GatoGamer1155/CVE-2021-27928
- https://github.com/H0j3n/EzpzCheatSheet
- https://github.com/H0j3n/EzpzShell
- https://github.com/LalieA/CVE-2021-27928
- https://github.com/Ly0nt4r/OSCP
- https://github.com/NaInSec/CVE-PoC-in-GitHub
- https://github.com/SYRTI/POC_to_review
- https://github.com/Shenkongyin/CUC-2023
- https://github.com/SirElmard/ethical_hacking
- https://github.com/WhooAmii/POC_to_review
- https://github.com/anquanscan/sec-tools
- https://github.com/e-hakson/OSCP
- https://github.com/eljosep/OSCP-Guide
- https://github.com/fenipr/Shibboleth
- https://github.com/k0mi-tg/CVE-POC
- https://github.com/kgwanjala/oscp-cheatsheet
- https://github.com/manas3c/CVE-POC
- https://github.com/nitishbadole/oscp-note-3
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/oscpname/OSCP_cheat
- https://github.com/revanmalang/OSCP
- https://github.com/shamo0/CVE-2021-27928-POC
- https://github.com/soosmile/POC
- https://github.com/superfish9/pt
- https://github.com/trhacknon/Pocingit
- https://github.com/txuswashere/OSCP
- https://github.com/whoforget/CVE-POC
- https://github.com/will5810/SecureCoding-Study
- https://github.com/xhref/OSCP
- https://github.com/youwizard/CVE-POC
- https://github.com/yukitsukai47/PenetrationTesting_cheatsheet
- https://github.com/zecool/cve
Reference in New Issue View Git Blame Copy Permalink