Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

CVE-2021-33766 PoC — Microsoft Exchange Server Information Disclosure Vulnerability

Source
https://github.com/demossl/CVE-2021-33766-ProxyToken
Associated Vulnerability
Title:Microsoft Exchange Server Information Disclosure Vulnerability (CVE-2021-33766)
Description:Microsoft Exchange Server Information Disclosure Vulnerability
Description
CVE-2021-33766-poc
Readme
## CVE-2021-33766 (ProxyToken)

支持单个目标检测和批量检测、支持邮件转发规则修改

### 用法

漏洞检测以及邮件转发规则修改

![1](images/1.png)

邮件转发规则修改结果 ![2](images/2.png)

邮件发送测试![3](images/3.png)

### 参考

https://www.zerodayinitiative.com/blog/2021/8/30/proxytoken-an-authentication-bypass-in-microsoft-exchange-server
File Snapshot

 [4.0K]  /data/pocs/eda292c8c7d2b89045adb169fbdb3eab202596da
├── [4.0K]  images
│   ├── [312K]  1.png
│   ├── [286K]  2.png
│   └── [398K]  3.png
├── [8.1K]  proxytoken.py
├── [ 398]  README.md
└── [  76]  url.txt

1 directory, 6 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →