Microsoft SharePoint Authorization 接口权限绕过漏洞（CVE-2023-29357）

漏洞描述

PoC代码

暂无

相关漏洞推荐

• POC CVE-2020-20627: GiveWP - Missing Authorization to Settings Update
• POC CVE-2023-37999: HT Mega – Absolute Addons for Elementor <= 2.2.0 - Missing Authorization to Privilege Escalation
• POC sharepoint-lists-api-disclosure: Microsoft SharePoint - List API Disclosure
• POC sharepoint-layouts-disclosure: Microsoft SharePoint - Layouts Disclosure
• POC sharepoint-masterpage-disclosure: Microsoft SharePoint - Master Page Disclosure
• POC sharepoint-site-metadata-disclosure: Microsoft SharePoint - Site Metadata Disclosure
• POC sharepoint-sitepages-disclosure: Microsoft SharePoint - Site Pages Disclosure
• POC CVE-2025-49706: Microsoft SharePoint Server - Authentication Bypass
• （CVE-2025-53770）Microsoft SharePoint Server反序列化漏洞允许远程代码执行
• Microsoft Web Deploy 需授权 反序列化漏洞 可导致任意代码执行
• POC CVE-2019-0604: Microsoft SharePoint - Remote Code Execution
• POC CVE-2020-0646: Microsoft .NET Framework - Remote Code Execution
• POC CVE-2025-29927-HEADLESS: Next.js Middleware Authorization Bypass