CVE-2021-21315

This repository contains a functional Proof of Concept (PoC) for CVE-2021-21315, demonstrating a command injection vulnerability in the 'systeminformation' npm package. The exploit leverages improper sanitization of array inputs to execute arbitrary commands on the target system.

This repository contains a functional exploit for CVE-2021-21315, a command injection vulnerability in the 'systeminformation' npm package. The exploit crafts a malicious URL with a base64-encoded reverse shell payload and sends it to the target, triggering remote code execution.

This repository contains a functional Rust-based exploit for CVE-2021-21315, which crafts a reverse shell payload encoded in base64 and URL-encoded to target a vulnerable API endpoint. The exploit sends the payload via HTTP request to achieve remote code execution.

This repository contains a functional PoC for CVE-2021-21315, demonstrating a command injection vulnerability in the 'systeminformation' npm package. The exploit leverages improper sanitization of array inputs to execute arbitrary commands via the `si.services()` function.

This repository contains a functional exploit PoC for CVE-2021-21315, targeting a command injection vulnerability in the Node.js npm package 'systeminformation'. The exploit sends a crafted HTTP request to execute a reverse shell via a command injection in the 'name[]' parameter.

The repository contains a functional Python exploit for CVE-2021-21315, targeting the 'systeminformation' npm package. It leverages command injection via a crafted API request to achieve remote code execution (RCE) by spawning a reverse shell.