漏洞描述
Microsoft SharePoint存在不安全的反序列化漏洞。此漏洞是由于对生成自定义工作流的工作流标记文件的输入验证不正确导致的。
Microsoft SharePoint Workflow IsGoodWorkflowCore CVE-2022-44690 不安全的反序列化漏洞
PoC代码
暂无相关漏洞推荐
- POC sharepoint-lists-api-disclosure: Microsoft SharePoint - List API Disclosure
- Argo Workflows 需授权 路径遍历漏洞
- POC CVE-2017-5983: JIRA Workflow Designer Plugin in Atlassian JIRA Server > 6.3.0 - Remote Code Execution (XXE)
- POC sharepoint-layouts-disclosure: Microsoft SharePoint - Layouts Disclosure
- POC sharepoint-masterpage-disclosure: Microsoft SharePoint - Master Page Disclosure
- POC sharepoint-site-metadata-disclosure: Microsoft SharePoint - Site Metadata Disclosure
- POC sharepoint-sitepages-disclosure: Microsoft SharePoint - Site Pages Disclosure
- POC CVE-2025-49706: Microsoft SharePoint Server - Authentication Bypass
- (CVE-2025-53770)Microsoft SharePoint Server反序列化漏洞允许远程代码执行
- Microsoft Web Deploy 需授权 反序列化漏洞 可导致任意代码执行
- 明源地产ERP系统 /Hkbgl/PhoneWorkflow/Business/PhoneHandler.ashx SQL 注入漏洞
- POC CVE-2019-0604: Microsoft SharePoint - Remote Code Execution
- POC CVE-2020-0646: Microsoft .NET Framework - Remote Code Execution