Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft web apps vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2015-1641
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word for Mac 2011, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2 and 2013 SP1, and Office Web Apps Server 2010 SP2 and 2013 SP1 allow remote malicious...
Microsoft Office Compatibility Pack
Microsoft Sharepoint Server 2010
Microsoft Office 2010
Microsoft Word 2010
Microsoft Office Web Apps 2013
Microsoft Word 2013
Microsoft Word 2011
Microsoft Word 2007
Microsoft Sharepoint Server 2013
Microsoft Office Web Apps 2010
1 Github repository
6 Articles
9.3
CVSSv2
CVE-2021-1715
Microsoft Word Remote Code Execution Vulnerability
Microsoft Word 2013
Microsoft Word 2016
Microsoft Office Web Apps 2010
Microsoft Sharepoint Server 2010
Microsoft Office 2010
Microsoft Office Web Apps Server 2013
Microsoft Sharepoint Enterprise Server 2016
Microsoft Word 2010
Microsoft Office Online Server -
Microsoft Sharepoint Enterprise Server 2013
Microsoft Sharepoint Server 2019
Microsoft Office 2019
Microsoft 365 Apps -
9.3
CVSSv2
CVE-2021-1716
Microsoft Word Remote Code Execution Vulnerability
Microsoft Word 2016
Microsoft Word 2013
Microsoft Office Web Apps 2010
Microsoft Sharepoint Server 2010
Microsoft Office 2010
Microsoft Office Web Apps Server 2013
Microsoft Sharepoint Enterprise Server 2016
Microsoft Word 2010
Microsoft Office Online Server -
Microsoft Sharepoint Enterprise Server 2013
Microsoft Sharepoint Server 2019
Microsoft Office 2019
Microsoft 365 Apps -
9.3
CVSSv2
CVE-2014-0260
Microsoft Word 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office Compatibility Pack SP3; Word Viewer; SharePoint Server 2010 SP1 and SP2 and 2013; Office Web Apps 2010 SP1 and SP2; and Office Web Apps Server 2013 allow remote malicious users to execute arbitrary cod...
Microsoft Sharepoint Server 2010
Microsoft Office Web Apps 2010
Microsoft Word Viewer
Microsoft Office Compatibility Pack
Microsoft Word 2007
Microsoft Sharepoint Server 2013
Microsoft Word 2003
Microsoft Office Web Apps Server 2013
Microsoft Word 2013
Microsoft Word 2010
4.3
CVSSv2
CVE-2020-1342
An information disclosure vulnerability exists when Microsoft Office software reads out of bound memory due to an uninitialized variable, which could disclose the contents of memory, aka 'Microsoft Office Information Disclosure Vulnerability'. This CVE ID is unique from...
Microsoft 365 Apps -
Microsoft Office 2010
Microsoft Office 2016
Microsoft Office 2019
Microsoft Office Online Server -
Microsoft Office Web Apps 2010
Microsoft Office Web Apps 2013
Microsoft Sharepoint Enterprise Server 2013
Microsoft Sharepoint Enterprise Server 2016
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Server 2019
Microsoft Word 2010
Microsoft Word 2013
Microsoft Word 2016
6.8
CVSSv2
CVE-2020-1218
<p>A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security context of the curre...
Microsoft Word 2013
Microsoft Word 2016
Microsoft Office Web Apps 2013
Microsoft Office Web Apps 2010
Microsoft Sharepoint Server 2010
Microsoft Office 2010
Microsoft Sharepoint Enterprise Server 2016
Microsoft Word 2010
Microsoft Office Online Server -
Microsoft Sharepoint Enterprise Server 2013
Microsoft Sharepoint Server 2019
Microsoft Office 2019
Microsoft 365 Apps -
Microsoft Office 2016
1 Article
4.3
CVSSv2
CVE-2020-1503
An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data. To exploit the vulnerability, an attacker cou...
Microsoft Word 2013
Microsoft Word 2016
Microsoft Office Web Apps 2013
Microsoft Office Web Apps 2010
Microsoft Sharepoint Server 2010
Microsoft Office 2010
Microsoft Sharepoint Enterprise Server 2016
Microsoft Word 2010
Microsoft Office Online Server -
Microsoft Sharepoint Enterprise Server 2013
Microsoft Sharepoint Server 2019
Microsoft Office 2019
Microsoft 365 Apps -
Microsoft Office 2016
1 Article
4.3
CVSSv2
CVE-2020-1583
An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data. To exploit the vulnerability, an attacker cou...
Microsoft Word 2013
Microsoft Word 2016
Microsoft Office Web Apps 2013
Microsoft Office Web Apps 2010
Microsoft Sharepoint Server 2010
Microsoft Office 2010
Microsoft Sharepoint Enterprise Server 2016
Microsoft Word 2010
Microsoft Office Online Server -
Microsoft Sharepoint Enterprise Server 2013
Microsoft Sharepoint Server 2019
Microsoft Office 2019
Microsoft 365 Apps -
Microsoft Office 2016
1 Article
4.3
CVSSv2
CVE-2012-1859
Cross-site scripting (XSS) vulnerability in scriptresx.ashx in Microsoft SharePoint Server 2010 Gold and SP1, SharePoint Foundation 2010 Gold and SP1, and Office Web Apps 2010 Gold and SP1 allows remote malicious users to inject arbitrary web script or HTML via crafted JavaScript...
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Foundation 2010
Microsoft Office Web Apps 2010
5.5
CVSSv2
CVE-2012-1860
Microsoft Office SharePoint Server 2007 SP2 and SP3, SharePoint Server 2010 Gold and SP1, and Office Web Apps 2010 Gold and SP1 do not properly check permissions for search scopes, which allows remote authenticated users to obtain sensitive information or cause a denial of servic...
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Server 2010
Microsoft Office Web Apps 2010
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »