Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sharepoint foundation vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2014-2816
Microsoft SharePoint Server 2013 Gold and SP1 and SharePoint Foundation 2013 Gold and SP1 allow remote authenticated users to gain privileges via a Trojan horse app that executes a custom action in the context of the SharePoint extensibility model, aka "SharePoint Page Conte...
Microsoft Sharepoint Foundation 2013
Microsoft Sharepoint Server 2013
7.5
CVSSv2
CVE-2013-0080
Microsoft SharePoint Server 2010 SP1 and SharePoint Foundation 2010 SP1 allow remote malicious users to bypass intended read restrictions for content, and hijack user accounts, via a crafted URL, aka "Callback Function Vulnerability."
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Foundation 2010
4.3
CVSSv2
CVE-2013-0083
Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Server 2010 SP1 allows remote malicious users to inject arbitrary web script or HTML via crafted content, leading to administrative command execution, aka "SharePoint XSS Vulnerability."
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Foundation 2010
7.5
CVSSv2
CVE-2013-0084
Directory traversal vulnerability in Microsoft SharePoint Server 2010 SP1 and SharePoint Foundation 2010 SP1 allows remote malicious users to bypass intended read restrictions for content, and hijack user accounts, via a crafted URL, aka "SharePoint Directory Traversal Vulne...
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Foundation 2010
7.8
CVSSv2
CVE-2013-0085
Buffer overflow in Microsoft SharePoint Server 2010 SP1 and SharePoint Foundation 2010 SP1 allows remote malicious users to cause a denial of service (W3WP process crash and site outage) via a crafted URL, aka "Buffer Overflow Vulnerability."
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Foundation 2010
5
CVSSv2
CVE-2013-0086
Microsoft OneNote 2010 SP1 does not properly determine buffer sizes during memory allocation, which allows remote malicious users to obtain sensitive information via a crafted OneNote file, aka "Buffer Size Validation Vulnerability."
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Foundation 2010
3.5
CVSSv2
CVE-2018-8155
An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft SharePoint Elevation of Privilege Vulnerability." This affects Microsoft SharePoin...
Microsoft Sharepoint Foundation 2013
Microsoft Sharepoint Server 2016
3.5
CVSSv2
CVE-2018-8252
An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft SharePoint Elevation of Privilege Vulnerability." This affects Microsoft SharePoin...
Microsoft Sharepoint Server 2016
Microsoft Sharepoint Foundation 2013
1 Article
4.3
CVSSv2
CVE-2011-1890
Cross-site scripting (XSS) vulnerability in EditForm.aspx in Microsoft Office SharePoint Server 2010 and SharePoint Foundation 2010 allows remote malicious users to inject arbitrary web script or HTML via a post, aka "Editform Script Injection Vulnerability."
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Foundation 2010
4.3
CVSSv2
CVE-2011-1891
Cross-site scripting (XSS) vulnerability in Microsoft Windows SharePoint Services 3.0 SP2, and SharePoint Foundation 2010 Gold and SP1, allows remote malicious users to inject arbitrary web script or HTML via unspecified parameters in a request to a script, aka "Contact Deta...
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Services 3.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »