This is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is.
Post
codewhitesec.bsky.social
codewhitesec.bsky.social
did:plc:7ratmrqglg2gpoh7aa3brp2l
We have reproduced "ToolShell", the unauthenticated exploit chain for CVE-2025-49706 + CVE-2025-49704 used by @_l0gg (on X) to pop SharePoint at #Pwn2Own Berlin 2025, it's really just one request! Kudos to @mwulftange.bsky.social
2025-07-14T13:00:55.940Z