Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft sharepoint server 2007 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2012-1863
Cross-site scripting (XSS) vulnerability in Microsoft Office SharePoint Server 2007 SP2 and SP3 Windows SharePoint Services 3.0 SP2, and SharePoint Foundation 2010 Gold and SP1 allows remote malicious users to inject arbitrary web script or HTML via crafted JavaScript elements in...
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Services 3.0
Microsoft Office Sharepoint Server 2007
Microsoft Sharepoint Foundation 2010
4
CVSSv2
CVE-2011-1892
Microsoft Office Groove 2007 SP2, SharePoint Workspace 2010 Gold and SP1, Office Forms Server 2007 SP2, Office SharePoint Server 2007 SP2, Office SharePoint Server 2010 Gold and SP1, Office Groove Data Bridge Server 2007 SP2, Office Groove Management Server 2007 SP2, Groove Serve...
Microsoft Sharepoint Workspace 2010
Microsoft Sharepoint Server 2010
Microsoft Office Web Apps 2010
Microsoft Forms Server 2007
Microsoft Groove Server 2010
Microsoft Sharepoint Services 3.0
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Foundation 2010
Microsoft Groove 2007
Microsoft Groove Data Bridge Server 2007
Microsoft Groove Management Server 2007
1 EDB exploit
3.5
CVSSv2
CVE-2010-0716
_layouts/Upload.aspx in the Documents module in Microsoft SharePoint prior to 2010 uses URLs with the same hostname and port number for a web site's primary files and individual users' uploaded files (aka attachments), which allows remote authenticated users to leverage...
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Server
4.3
CVSSv2
CVE-2015-2556
The InfoPath Forms Services component in Microsoft SharePoint Server 2007 SP3 and 2010 SP2 misparses DTDs, which allows remote malicious users to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to...
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Server 2010
6
CVSSv2
CVE-2015-1700
Microsoft SharePoint Server 2007 SP3, SharePoint Foundation 2010 SP2, SharePoint Server 2010 SP2, and SharePoint Foundation 2013 SP1 allow remote authenticated users to execute arbitrary code via crafted page content, aka "Microsoft SharePoint Page Content Vulnerabilities.&q...
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Server 2013
9.3
CVSSv2
CVE-2017-8513
A remote code execution vulnerability exists in Microsoft PowerPoint when the software fails to properly handle objects in memory, aka "Microsoft PowerPoint Remote Code Execution Vulnerability".
Microsoft Powerpoint 2007
Microsoft Sharepoint Server 2007
4.3
CVSSv2
CVE-2012-2520
Cross-site scripting (XSS) vulnerability in Microsoft InfoPath 2007 SP2 and SP3 and 2010 SP1, Communicator 2007 R2, Lync 2010 and 2010 Attendee, SharePoint Server 2007 SP2 and SP3 and 2010 SP1, Groove Server 2010 SP1, Windows SharePoint Services 3.0 SP2, SharePoint Foundation 201...
Microsoft Office Communicator 2007
Microsoft Lync 2010
Microsoft Office Web Apps 2010
Microsoft Sharepoint Server 2007
Microsoft Infopath 2007
Microsoft Infopath 2010
Microsoft Groove Server 2010
Microsoft Sharepoint Services 3.0
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Server 2010
4.3
CVSSv2
CVE-2013-3179
Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013 allows remote malicious users to inject arbitrary web script or HTML via a crafted request, aka "SharePoint XSS Vulnerability."
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Services 3.0
1 EDB exploit
4.3
CVSSv2
CVE-2010-0817
Cross-site scripting (XSS) vulnerability in _layouts/help.aspx in Microsoft SharePoint Server 2007 12.0.0.6421 and possibly earlier, and SharePoint Services 3.0 SP1 and SP2, versions, allows remote malicious users to inject arbitrary web script or HTML via the cid0 parameter.
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Services 3.0
1 EDB exploit
6.8
CVSSv2
CVE-2013-3895
Microsoft SharePoint Server 2007 SP3 and 2010 SP1 and SP2 allows remote malicious users to conduct clickjacking attacks via a crafted web page, aka "Parameter Injection Vulnerability."
Microsoft Office Web Apps 2010
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Server 2013
Microsoft Sharepoint Server 2007
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111
CVE-2024-32884
IDOR
CVE-2023-1000
CVE-2024-33260
CVE-2024-3682
reflected XSS
race condition
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »