RCE exploit for Microsoft SharePoint 2019. Microsoft SharePoint Server contains a code injection vulnerability that allows an authenticated attacker with Site Owner privileges to execute code remotely.
I tried using the given exploit, but I was not successful in getting even one validid.
I made my own exploit, now the results are incredible: out of 1k IPs I got 93 valid shells for Microsoft Sharepoint 2019.
About vulnerability: https://www.cisa.gov/news-events/alerts/2024/03/26/cisa-adds-one-known-exploited-vulnerability-catalog
For education purposes only.
Copies are limited.