From ecedd216dde3988275bb6bed73eceec228838603 Mon Sep 17 00:00:00 2001
From: Mrxn <mrxn.net@gmail.com>
Date: Mon, 22 Nov 2021 19:05:08 +0800
Subject: [PATCH] =?UTF-8?q?add=20Hadoop=20Yarn=20RPC=E6=9C=AA=E6=8E=88?=
 =?UTF-8?q?=E6=9D=83RCE&CVE-2021-41277=EF=BC=9AMetabase=20=E6=95=8F?=
 =?UTF-8?q?=E6=84=9F=E4=BF=A1=E6=81=AF=E6=B3=84=E9=9C=B2&CVE-2021-37580?=
 =?UTF-8?q?=EF=BC=9AApache=20ShenYu=E6=9D=83=E9=99=90=E8=AE=A4=E8=AF=81?=
 =?UTF-8?q?=E7=BB=95=E8=BF=87&Alibaba=20Sentinel=20=E5=89=8D=E5=8F=B0=20SS?=
 =?UTF-8?q?RF?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 README.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/README.md b/README.md
index 2c65e95..84b2f9a 100644
--- a/README.md
+++ b/README.md
@@ -227,6 +227,10 @@
 - [laravel-exploits：Exploit for CVE-2021-3129](https://github.com/ambionics/laravel-exploits)
 - [CVE-2021-21234：Spring Boot 目录遍历](https://github.com/xiaojiangxl/CVE-2021-21234)
 - [CVE-2021-22205：gitlab ce 文件上传 ExifTool导致命令执行 的 RCE 漏洞](https://github.com/RedTeamWing/CVE-2021-22205)
+- [Hadoop Yarn RPC未授权RCE](https://github.com/cckuailong/YarnRpcRCE)
+- [CVE-2021-41277：Metabase 敏感信息泄露](https://github.com/Seals6/CVE-2021-41277)
+- [Alibaba Sentinel 前台 SSRF](https://github.com/alibaba/Sentinel/issues/2451)
+- [CVE-2021-37580：Apache ShenYu权限认证绕过](https://github.com/fengwenhua/CVE-2021-37580)
 
 ## <span id="head5"> 提权辅助相关</span>