Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft sharepoint server 2010 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-1439
A remote code execution vulnerability exists in PerformancePoint Services for SharePoint Server when the software fails to check the source markup of XML file input, aka 'PerformancePoint Services Remote Code Execution Vulnerability'.
Microsoft Sharepoint Enterprise Server 2013
Microsoft Sharepoint Enterprise Server 2016
Microsoft Sharepoint Foundation 2013
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Server 2019
5.4
CVSSv3
CVE-2020-1450
A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-1451,...
Microsoft Sharepoint Enterprise Server 2013
Microsoft Sharepoint Enterprise Server 2016
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Server 2019
5.4
CVSSv3
CVE-2020-1451
A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-1450,...
Microsoft Sharepoint Enterprise Server 2013
Microsoft Sharepoint Enterprise Server 2016
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Server 2019
8.8
CVSSv3
CVE-2020-1447
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1446, CVE-2020-1448.
Microsoft 365 Apps -
Microsoft Office 2010
Microsoft Office 2016
Microsoft Office 2019
Microsoft Office Online Server 1.0
Microsoft Office Web Apps 2010
Microsoft Office Web Apps 2013
Microsoft Sharepoint Enterprise Server 2013
Microsoft Sharepoint Enterprise Server 2016
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Server 2019
Microsoft Word 2010
Microsoft Word 2013
Microsoft Word 2016
Microsoft Word Rt 2013
7.8
CVSSv3
CVE-2020-1147
A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input, aka '.NET Framework, SharePoint Server, and Visual Studio Remote Code Execution Vulnerability'.
Microsoft .net Core 2.1
Microsoft .net Core 3.1
Microsoft .net Framework 2.0
Microsoft .net Framework 3.0
Microsoft .net Framework 3.5
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.7.2
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.6
Microsoft .net Framework 4.8
Microsoft .net Framework 3.5.1
Microsoft .net Framework 4.5.2
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Enterprise Server 2016
Microsoft Sharepoint Enterprise Server 2013
Microsoft Sharepoint Server 2019
Microsoft Visual Studio 2019
Microsoft Visual Studio 2017
1 Article
5.5
CVSSv3
CVE-2020-1445
An information disclosure vulnerability exists when Microsoft Office improperly discloses the contents of its memory, aka 'Microsoft Office Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-1342.
Microsoft 365 Apps -
Microsoft Office 2010
Microsoft Office 2016
Microsoft Office 2019
Microsoft Office Online Server -
Microsoft Office Web Apps 2010
Microsoft Office Web Apps 2013
Microsoft Sharepoint Enterprise Server 2013
Microsoft Sharepoint Enterprise Server 2016
Microsoft Word 2010
Microsoft Word 2013
Microsoft Word 2016
5.4
CVSSv3
CVE-2020-1456
A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-1450,...
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Enterprise Server 2016
Microsoft Sharepoint Enterprise Server 2013
Microsoft Sharepoint Server 2019
5.5
CVSSv3
CVE-2020-1342
An information disclosure vulnerability exists when Microsoft Office software reads out of bound memory due to an uninitialized variable, which could disclose the contents of memory, aka 'Microsoft Office Information Disclosure Vulnerability'. This CVE ID is unique from...
Microsoft 365 Apps -
Microsoft Office 2010
Microsoft Office 2016
Microsoft Office 2019
Microsoft Office Online Server -
Microsoft Office Web Apps 2010
Microsoft Office Web Apps 2013
Microsoft Sharepoint Enterprise Server 2013
Microsoft Sharepoint Enterprise Server 2016
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Server 2019
Microsoft Word 2010
Microsoft Word 2013
Microsoft Word 2016
8.8
CVSSv3
CVE-2020-1446
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1447, CVE-2020-1448.
Microsoft 365 Apps -
Microsoft Office 2010
Microsoft Office 2016
Microsoft Office 2019
Microsoft Office Online Server 1.0
Microsoft Office Web Apps 2010
Microsoft Office Web Apps 2013
Microsoft Sharepoint Enterprise Server 2013
Microsoft Sharepoint Enterprise Server 2016
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Server 2019
Microsoft Word 2010
Microsoft Word 2013
Microsoft Word 2016
Microsoft Word Rt 2013
1 Github repository
8.8
CVSSv3
CVE-2020-1178
An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted authentication request to an affected SharePoint server, aka 'Microsoft SharePoint Server Elevation of Privilege Vulnerability'.
Microsoft Sharepoint Enterprise Server 2013
Microsoft Sharepoint Enterprise Server 2016
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Server 2019
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »