CVE-2022-30190

CVE-2022-30190 CVE-2022-30190 Follina POC

Host exploit.html on localhost, port 80. Open the docx to pop calc.

To change the remote address the doc points to, open in 7Z and edit word\rels\document.xml.rels to point to a new location. YOU MUST keep the exclamation mark. It will literally not run if you omit this from the end of the URL.

The exploit must contain at least 3541 characters before the window.location.href, and they must be within the script tag. There is about 6000 or so included in the exploit.html

demo

Name		Name	Last commit message	Last commit date
Latest commit History 4 Commits
README.md		README.md
clickme.docx		clickme.docx
exploit.html		exploit.html

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

README.md

README.md

clickme.docx

clickme.docx

exploit.html

exploit.html

Repository files navigation

CVE-2022-30190

About

Releases

Packages

Languages

ITMarcin2211/CVE-2022-30190

Folders and files

Latest commit

History

Repository files navigation

CVE-2022-30190

About

Resources

Stars

Watchers

Forks

Languages