December 14, 2020 at 10:55PM

■■■■■ PoC exploits for CVE-2020-17143 and CVE-2020-17141 the XXE bugs against Exchange Server.

– Low privileged authentication only
– CVE-2020-17141 is in the EWS API.

https://srcincite.io/pocs/cve-2020-17143.py.txt
https://srcincite.io/pocs/cve-2020-17141.py.txt

https://t.me/cKure/6357