CVEs-PoC/2021/CVE-2021-31207.md

### [CVE-2021-31207](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31207)
![](https://img.shields.io/static/v1?label=Product&message=Microsoft%20Exchange%20Server%202013%20Cumulative%20Update%2023&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Microsoft%20Exchange%20Server%202016%20Cumulative%20Update%2019&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Microsoft%20Exchange%20Server%202016%20Cumulative%20Update%2020&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Microsoft%20Exchange%20Server%202019%20Cumulative%20Update%208&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Microsoft%20Exchange%20Server%202019%20Cumulative%20Update%209&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=15.00.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=15.01.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=15.02.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Defense%20in%20Depth&color=brightgreen)

### Description

Microsoft Exchange Server Security Feature Bypass Vulnerability

### POC

#### Reference
- http://packetstormsecurity.com/files/163895/Microsoft-Exchange-ProxyShell-Remote-Code-Execution.html

#### Github
- https://github.com/0x3n0/redeam
- https://github.com/0xb0rn3/r3cond0g
- https://github.com/ARPSyndicate/cve-scores
- https://github.com/ARPSyndicate/cvemon
- https://github.com/Advisory-Newsletter/Babuk-Ransomware
- https://github.com/Astrogeorgeonethree/Starred
- https://github.com/Astrogeorgeonethree/Starred2
- https://github.com/Atem1988/Starred
- https://github.com/CVEDB/PoC-List
- https://github.com/CVEDB/awesome-cve-repo
- https://github.com/CVEDB/top
- https://github.com/DiedB/caldera-precomp
- https://github.com/FDlucifer/Proxy-Attackchain
- https://github.com/GhostTroops/TOP
- https://github.com/HackingCost/AD_Pentest
- https://github.com/JERRY123S/all-poc
- https://github.com/KNIGHTPROJEKS-0/LANCELOTT
- https://github.com/Ly4j/Exchange-ProxyShell-exp
- https://github.com/Ostorlab/KEV
- https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors
- https://github.com/T0mcat3r/ALinks
- https://github.com/aravazhimdr/ProxyShell-POC-Mod
- https://github.com/cyberanand1337x/bug-bounty-2022
- https://github.com/cyberheartmi9/Proxyshell-Scanner
- https://github.com/danyk20/pentest
- https://github.com/hackingmess/HIVE-INDICADORES-DE-COMPROMISO-IOCs
- https://github.com/hktalent/TOP
- https://github.com/horizon3ai/proxyshell
- https://github.com/hosch3n/ProxyVulns
- https://github.com/jbmihoub/all-poc
- https://github.com/kh4sh3i/ProxyShell
- https://github.com/kh4sh3i/exchange-penetration-testing
- https://github.com/koorchik/dissert
- https://github.com/koorchik/llm-analysis-of-text-data
- https://github.com/laoqin1234/https-github.com-HackingCost-AD_Pentest
- https://github.com/merlinepedra/RedTeam_toolkit
- https://github.com/merlinepedra25/RedTeam_toolkit
- https://github.com/mithridates1313/ProxyShell_POC
- https://github.com/n0-traces/cve_monitor
- https://github.com/nitish778191/fitness_app
- https://github.com/nullx3d/PaypScan
- https://github.com/pen4uin/awesome-vulnerability-research
- https://github.com/pen4uin/vulnerability-research
- https://github.com/pen4uin/vulnerability-research-list
- https://github.com/pwnlog/ALinks
- https://github.com/pwnlog/PAD
- https://github.com/pwnlog/PuroAD
- https://github.com/pwnlog/PurpAD
- https://github.com/r0eXpeR/supplier
- https://github.com/retr0-13/proxy_Attackchain
- https://github.com/signorrayan/RedTeam_toolkit
- https://github.com/swaptt/swapt-it
- https://github.com/triw0lf/Security-Matters-22
- https://github.com/weeka10/-hktalent-TOP