#ssrf-attacks
#ssrf-attacks

[ follow ]

Zero Day Initiative - CVE-2024-30043: Abusing URL Parsing Confusion to Exploit XXE on SharePoint Server and Cloud

SharePoint had an XXE vulnerability (CVE-2024-30043) allowing file reading, SSRF attacks, and NTLM relaying, affecting on-prem and cloud instances.

[ Load more ]