CVE-2023-28288
HIGHMicrosoft SharePoint Server - Server-Side Request Forgery
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2023-28288. PoCs published by Amirhossein Bahramizadeh.
AI-analyzed exploit summary This exploit demonstrates a spoofing vulnerability in Microsoft SharePoint by replacing a legitimate file with a fake one, leveraging file manipulation and HTTP requests to trigger the vulnerability.
Description
Microsoft SharePoint Server Spoofing Vulnerability
Exploits (1)
exploitdb
WORKING POC
by Amirhossein Bahramizadeh · cwebappsmultiple
https://www.exploit-db.com/exploits/51543
This exploit demonstrates a spoofing vulnerability in Microsoft SharePoint by replacing a legitimate file with a fake one, leveraging file manipulation and HTTP requests to trigger the vulnerability.
Classification
Working Poc 80%
Attack Type
Other
Complexity
Moderate
Reliability
Reliable
Target:
Microsoft SharePoint Enterprise Server 2016
No auth needed
Prerequisites:
Access to the target SharePoint server · Ability to host a fake file on an attacker-controlled server
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry
http://packetstormsecurity.com/files/173126/Microsoft-SharePoint-Enterprise-Server-2016-Spoofing.html
Patch, Vendor Advisory vendor-advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28288
Scores
CVSS v3
8.1
EPSS
0.0909
EPSS Percentile
92.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-918
Status
published
Products (5)
microsoft/sharepoint_foundation
2013 sp1
microsoft/sharepoint_server
microsoft/sharepoint_server
2013 sp1
microsoft/sharepoint_server
2016
microsoft/sharepoint_server
2019
Published
Apr 11, 2023
Tracked Since
Feb 18, 2026