CVE-2021-31181: MicroSoft SharePoint webpart interpretation co | PT SWARM
CVE-2021-31181: MicroSoft SharePoint webpart interpretation conflict RCE vulnerability
To quote @thezdi: "this vulnerability could be used by an authenticated user to execute arbitrary code on the server in the context of the service account of the SharePoint web application. For a successful attack, the attacker must have SPBasePermissions.ManageLists permissions on any SharePoint site. By default, any authenticated user can create their own site where they have the necessary permission."
Contents: • The Vulnerability • Proof of Concept • Getting Remote Code Execution • Conclusion
Positive Technologies Offensive Team: twitter.com/ptswarm. This is the channel where we share articles/vulnerabilities/scripts/etc, not necessarily authored by us, that we find interesting...