https://x7peeps.com/tags/CVE-2023-21211/index.htmlHugozh-CNWed, 24 Jun 2026 10:00:00 +0800https://x7peeps.com/%E5%AE%89%E5%85%A8/%E6%B8%97%E9%80%8F%E6%B5%8B%E8%AF%95/03-%E6%BC%8F%E6%B4%9E%E5%88%86%E6%9E%90/%E8%BA%AB%E4%BB%BD%E4%B8%8E%E5%AF%86%E9%92%A5%E7%AE%A1%E7%90%86/%E8%BA%AB%E4%BB%BD%E4%B8%8E%E5%AF%86%E9%92%A5%E7%AE%A1%E7%90%86%E9%AB%98%E5%8D%B1%E6%94%BB%E5%87%BB%E9%93%BE%E4%B8%93%E9%A2%98/index.htmlWed, 24 Jun 2026 10:00:00 +0800https://x7peeps.com/%E5%AE%89%E5%85%A8/%E6%B8%97%E9%80%8F%E6%B5%8B%E8%AF%95/03-%E6%BC%8F%E6%B4%9E%E5%88%86%E6%9E%90/%E8%BA%AB%E4%BB%BD%E4%B8%8E%E5%AF%86%E9%92%A5%E7%AE%A1%E7%90%86/%E8%BA%AB%E4%BB%BD%E4%B8%8E%E5%AF%86%E9%92%A5%E7%AE%A1%E7%90%86%E9%AB%98%E5%8D%B1%E6%94%BB%E5%87%BB%E9%93%BE%E4%B8%93%E9%A2%98/index.html围绕 Keycloak 和 HashiCorp Vault 两大身份与密钥管理产品的高危漏洞链，覆盖 OAuth2 认证绕过、X-Forwarded-For 欺骗、Shamir 密钥共享绕过、OIDC 认证绕过等攻击手法，含完整 PoC 代码、Nuclei 模板、自动化利用脚本与防守建议。