Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sharepoint services vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2010-3243
Cross-site scripting (XSS) vulnerability in the toStaticHTML function in Microsoft Internet Explorer 8, and the SafeHTML function in Microsoft Windows SharePoint Services 3.0 SP2 and Office SharePoint Server 2007 SP2, allows remote malicious users to inject arbitrary web script o...
Microsoft Sharepoint Services 3.0
Microsoft Sharepoint Server 2007
Microsoft Internet Explorer 8
9.3
CVSSv2
CVE-2013-3847
Microsoft Word Automation Services in SharePoint Server 2010 SP1, Word Web App 2010 SP1 in Office Web Apps 2010, Word 2003 SP3, Word 2007 SP3, Word 2010 SP1, Office Compatibility Pack SP3, and Word Viewer allow remote malicious users to execute arbitrary code or cause a denial of...
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Services 3.0
Microsoft Sharepoint Services 2.0
Microsoft Sharepoint Portal Server 2003
Microsoft Office Web Apps 2010
Microsoft Word Viewer
Microsoft Office Compatibility Pack
Microsoft Word 2010
Microsoft Word 2007
Microsoft Word 2003
9.3
CVSSv2
CVE-2013-1315
Microsoft SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013; Office Web Apps 2010; Excel 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office for Mac 2011; Excel Viewer; and Office Compatibility Pack SP3 allow remote malicious users to execute arbitrary code or ca...
Microsoft Excel Viewer
Microsoft Excel 2013
Microsoft Office Compatibility Pack
Microsoft Excel 2003
Microsoft Office 2011
Microsoft Sharepoint Foundation 2010
Microsoft Excel 2010
Microsoft Excel 2007
Microsoft Sharepoint Services 3.0
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Services 2.0
Microsoft Sharepoint Portal Server 2003
Microsoft Office Web Apps 2010
4.3
CVSSv2
CVE-2010-3324
The toStaticHTML function in Microsoft Internet Explorer 8, and the SafeHTML function in Microsoft Windows SharePoint Services 3.0 SP2, SharePoint Foundation 2010, Office SharePoint Server 2007 SP2, Groove Server 2010, and Office Web Apps, allows remote malicious users to bypass ...
Microsoft Internet Explorer 8
Microsoft Sharepoint Services 3.0
Microsoft Groove Server 2010
Microsoft Web Apps
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Server 2007
1 EDB exploit
6.8
CVSSv2
CVE-2006-0015
Cross-site scripting (XSS) vulnerability in _vti_bin/_vti_adm/fpadmdll.dll in Microsoft FrontPage Server Extensions 2002 and SharePoint Team Services allows remote malicious users to inject arbitrary web script or HTML, then leverage the attack to execute arbitrary programs or cr...
Microsoft Sharepoint Team Services
Microsoft Frontpage Server Extensions 2002
1 EDB exploit
4.3
CVSSv2
CVE-2010-1257
Cross-site scripting (XSS) vulnerability in the toStaticHTML API, as used in Microsoft Office InfoPath 2003 SP3, 2007 SP1, and 2007 SP2; Office SharePoint Server 2007 SP1 and SP2; SharePoint Services 3.0 SP1 and SP2; and Internet Explorer 8 allows remote malicious users to inject...
Microsoft Office Infopath 2003
Microsoft Office Infopath 2007
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Services 3.0
Microsoft Internet Explorer 8
9
CVSSv2
CVE-2014-0251
Microsoft Windows SharePoint Services 3.0 SP3; SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013 Gold and SP1; SharePoint Foundation 2010 SP1 and SP2 and 2013 Gold and SP1; Project Server 2010 SP1 and SP2 and 2013 Gold and SP1; Web Applications 2010 SP1 and SP2; Office Web A...
Microsoft Office Web Apps Server 2013
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Server Client Components Sdk 2013
Microsoft Sharepoint Designer 2007
Microsoft Project Server 2013
Microsoft Sharepoint Foundation 2013
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Designer 2013
Microsoft Web Applications 2010
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Server 2013
Microsoft Sharepoint Designer 2010
Microsoft Project Server 2010
Microsoft Sharepoint Services 3.0
4.3
CVSSv2
CVE-2012-2520
Cross-site scripting (XSS) vulnerability in Microsoft InfoPath 2007 SP2 and SP3 and 2010 SP1, Communicator 2007 R2, Lync 2010 and 2010 Attendee, SharePoint Server 2007 SP2 and SP3 and 2010 SP1, Groove Server 2010 SP1, Windows SharePoint Services 3.0 SP2, SharePoint Foundation 201...
Microsoft Office Communicator 2007
Microsoft Lync 2010
Microsoft Office Web Apps 2010
Microsoft Sharepoint Server 2007
Microsoft Infopath 2007
Microsoft Infopath 2010
Microsoft Groove Server 2010
Microsoft Sharepoint Services 3.0
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Server 2010
4
CVSSv2
CVE-2011-1892
Microsoft Office Groove 2007 SP2, SharePoint Workspace 2010 Gold and SP1, Office Forms Server 2007 SP2, Office SharePoint Server 2007 SP2, Office SharePoint Server 2010 Gold and SP1, Office Groove Data Bridge Server 2007 SP2, Office Groove Management Server 2007 SP2, Groove Serve...
Microsoft Sharepoint Workspace 2010
Microsoft Sharepoint Server 2010
Microsoft Office Web Apps 2010
Microsoft Forms Server 2007
Microsoft Groove Server 2010
Microsoft Sharepoint Services 3.0
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Foundation 2010
Microsoft Groove 2007
Microsoft Groove Data Bridge Server 2007
Microsoft Groove Management Server 2007
1 EDB exploit
9.3
CVSSv2
CVE-2018-1028
A remote code execution vulnerability exists when the Office graphics component improperly handles specially crafted embedded fonts, aka "Microsoft Office Graphics Remote Code Execution Vulnerability." This affects Word, Microsoft Office, Microsoft SharePoint, Excel, Mi...
Microsoft Sharepoint Enterprise Server 2016
Microsoft Office Web Apps 2010
Microsoft Excel Services -
Microsoft Word Automation Services -
Microsoft Office 2016
Microsoft Office 2013
Microsoft Office 2013 Rt
Microsoft Office 2010
Microsoft Sharepoint Enterprise Server 2013
Microsoft Office Web Apps 2013
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »