Provide Server v.14.4 XSS – CSRF & Remote Code Execution (RCE)

• Exploit Database
• 19 阅读

• 作者： Andreas Finstad
  日期： 2023-04-05
• 类别：

  • webapps
  平台：

  • multiple
• 来源：https://www.exploit-db.com/exploits/51264/

• # Exploit Title: Provide Server v.14.4 XSS - CSRF & Remote Code Execution (RCE)
  # Date: 2023-02-10
  # Exploit Author: Andreas Finstad
  # Version: < 14.4.1.29 
  # Tested on: Windows Server 2022
  # CVE : CVE-2023-23286
  POC:
  
  https://f20.be/blog/provide-server-14-4