CVE-2021-21276P2CRITICALCVSS 9.3PoCfixed in 2.3.02021-02-01
CVE-2021-21276 [CRITICAL] CWE-863 CVE-2021-21276: Polr is an open source URL shortener. in Polr before version 2.3.0, a vulnerability in the setup pro
Polr is an open source URL shortener. in Polr before version 2.3.0, a vulnerability in the setup process allows attackers to gain admin access to site instances, even if they do not possess an existing account. This vulnerability exists regardless of users' settings. If an attacker crafts a request with specific cookie headers to the /setup/finish
nvd