Microsoft Apache Solr RCE Velocity Template | Bug Bounty POC

Hey guys so this blog post is about RCE issue reported to Microsoft bug bounty program, Remote Code execution issue existed in microsoft.com subdomain running Apache Solr.   I’ll try to be as simple as possible. Participated in Microsoft Bug Bounty Program first time.. About the RCE: While doing some recon on microsoft.com website i found a subdomain http://tide90.microsoft.com/ doing […]