Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sharepoint foundation vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2019-0958
An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2...
Microsoft Sharepoint Server 2019
Microsoft Sharepoint Foundation 2013
1 Article
4.3
CVSSv2
CVE-2013-3180
Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Server 2010 SP1 and SP2 and 2013 allows remote malicious users to inject arbitrary web script or HTML via a crafted POST request, aka "POST XSS Vulnerability."
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Foundation 2010
4.3
CVSSv2
CVE-2012-0144
Cross-site scripting (XSS) vulnerability in themeweb.aspx in Microsoft Office SharePoint Server 2010 Gold and SP1 and SharePoint Foundation 2010 Gold and SP1 allows remote malicious users to inject arbitrary web script or HTML via JavaScript sequences in a URL, aka "XSS in t...
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Foundation 2010
3.5
CVSSv2
CVE-2015-6039
Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Server 2013 SP1 and SharePoint Foundation 2013 SP1 allows remote authenticated users to inject arbitrary web script or HTML via crafted content in an Office Marketplace instance, aka "Microsoft SharePoint Secur...
Microsoft Sharepoint Foundation 2013
Microsoft Sharepoint Server 2013
4.3
CVSSv2
CVE-2011-0653
Cross-site scripting (XSS) vulnerability in Microsoft Office SharePoint Server 2010 Gold and SP1, and SharePoint Foundation 2010, allows remote malicious users to inject arbitrary web script or HTML via the URI, aka "XSS in SharePoint Calendar Vulnerability."
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Foundation 2010
4.3
CVSSv2
CVE-2015-6117
Microsoft SharePoint Server 2013 SP1 and SharePoint Foundation 2013 SP1 allow remote authenticated users to bypass intended Access Control Policy restrictions and conduct cross-site scripting (XSS) attacks by modifying a webpart, aka "Microsoft SharePoint Security Feature By...
Microsoft Sharepoint Foundation 2013
Microsoft Sharepoint Server 2013
3.5
CVSSv2
CVE-2016-0011
Microsoft SharePoint Server 2013 SP1 and SharePoint Foundation 2013 SP1 allow remote authenticated users to bypass intended Access Control Policy restrictions and conduct cross-site scripting (XSS) attacks by modifying a webpart, aka "Microsoft SharePoint Security Feature By...
Microsoft Sharepoint Server 2013
Microsoft Sharepoint Foundation 2013
4.3
CVSSv2
CVE-2012-0145
Cross-site scripting (XSS) vulnerability in wizardlist.aspx in Microsoft Office SharePoint Server 2010 Gold and SP1 and SharePoint Foundation 2010 Gold and SP1 allows remote malicious users to inject arbitrary web script or HTML via JavaScript sequences in a URL, aka "XSS in...
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Foundation 2010
3.5
CVSSv2
CVE-2019-0949
A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2019-0950, CVE-2019-0951.
Microsoft Sharepoint Foundation 2013
Microsoft Sharepoint Server 2016
1 Article
3.5
CVSSv2
CVE-2019-0950
A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2019-0949, CVE-2019-0951.
Microsoft Sharepoint Server 2016
Microsoft Sharepoint Foundation 2013
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »