Adds detection template for Microsoft Exchange Server Privilege Escalation (CVE-2018-8581).

/claim #14576

Description

This PR adds a Nuclei template for CVE-2018-8581, an elevation of privilege vulnerability in Microsoft Exchange Server. The template performs an active validation by triggering an SSRF interaction via a Push Notification subscription request.

Proof of Concept (POC)

The template sends a SOAP Subscribe request to /ews/exchange.asmx containing a PushSubscriptionRequest with an interactsh-url. Successful exploitation is confirmed by the resulting OAST interaction.

Debug Data

Validated the template structure and OAST payload extraction. The template correctly populates the PushSubscriptionRequest and handles authentication.

Vulnerable Environment

A functional mock environment (Docker-based) is provided in the vulnerable-env/ directory. This environment specifically mocks the Exchange Web Services (EWS) subscription endpoint to verify the template’s request structure and OAST triggering.