A security researcher has released a new proof-of-concept exploit this weekend that requires slight modification to install web shells on Microsoft Exchange servers vulnerable to the actively exploited ProxyLogon vulnerabilities. The new PoC requires very little modification to exploit a vulnerable Microsoft Exchange server and drop a web shell on it. Microsoft-owned GitHub said they took down the PoC to protect devices that are being actively exploited. There are approximately 80,000 vulnerable Exchange servers still exposed on the Internet, according to research.
Source: https://www.bleepingcomputer.com/news/security/new-poc-for-microsoft-exchange-bugs-puts-attacks-in-reach-of-anyone/