.. / CVE-2021-31195

Exploit for Microsoft Exchange Server - Cross-Site Scripting (CVE-2021-31195)

Description:

Microsoft Exchange Server, or OWA, is vulnerable to a cross-site scripting vulnerability in refurl parameter of frowny.asp.

Nuclei Template

View the template here CVE-2021-31195.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2021/CVE-2021-31195.yaml

References:

https://nvd.nist.gov/vuln/detail/CVE-2021-31195
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31195
https://github.com/ARPSyndicate/kenzer-templates
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31195
https://blog.orange.tw/2021/08/proxyoracle-a-new-attack-surface-on-ms-exchange-part-2.html