Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sharepoint services vulnerabilities and exploits
(subscribe to this query)
6
CVSSv2
CVE-2003-0904
Microsoft Exchange 2003 and Outlook Web Access (OWA), when configured to use NTLM authentication, does not properly reuse HTTP connections, which can cause OWA users to view mailboxes of other users when Kerberos has been disabled as an authentication method for IIS 6.0, e.g. whe...
Microsoft Exchange Server 2003
Microsoft Sharepoint Services 2.0
Microsoft Windows Server 2003
Microsoft Windows Server 2003 -
Microsoft Windows Server 2003 R2
5.8
CVSSv2
CVE-2016-7268
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Office Compatibility Pack SP3, Word Viewer, Word for Mac 2011, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2 allow remote malicious users to obtain sensitive information from process m...
Microsoft Office Web Apps 2010
Microsoft Word Viewer
Microsoft Office Compatibility Pack
Microsoft Sharepoint Server 2010
Microsoft Word For Mac 2011
Microsoft Office 2010
Microsoft Word 2007
5.8
CVSSv2
CVE-2016-7290
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Office Compatibility Pack SP3, Word for Mac 2011, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2 allow remote malicious users to obtain sensitive information from process memory or caus...
Microsoft Word For Mac 2011
Microsoft Word Automation Services -
Microsoft Office Compatibility Pack -
Microsoft Word 2007
Microsoft Office 2010
Microsoft Word 2010
Microsoft Sharepoint Server 2010
Microsoft Office Web Apps 2010
5.8
CVSSv2
CVE-2016-7291
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Office Compatibility Pack SP3, Word for Mac 2011, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2 allow remote malicious users to obtain sensitive information from process memory or caus...
Microsoft Word Automation Services -
Microsoft Sharepoint Server 2010
Microsoft Office Compatibility Pack -
Microsoft Office 2010
Microsoft Word 2010
Microsoft Word For Mac 2011
Microsoft Office Web Apps 2010
Microsoft Word 2007
5.8
CVSSv2
CVE-2016-7265
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Office Compatibility Pack SP3, Excel Viewer, Excel Services on SharePoint Server 2007 SP3, and Excel Services on SharePoint Server 2010 SP2 allow remote malicious users to obtain sensitive in...
Microsoft Excel 2013
Microsoft Excel 2010
Microsoft Excel Viewer
Microsoft Office Compatibility Pack
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Server 2010
Microsoft Excel 2007
Microsoft Excel 2016
5
CVSSv2
CVE-2014-3285
Cisco Wide Area Application Services (WAAS) 5.3(.5a) and previous versions, when SharePoint acceleration is enabled, does not properly parse SharePoint responses, which allows remote malicious users to cause a denial of service (application-optimization handler reload) via a craf...
Cisco Wide Area Application Services 5.3\\(.1\\)
Cisco Wide Area Application Services 5.3
Cisco Wide Area Application Services 5.2\\(.1\\)
Cisco Wide Area Application Services 5.2
Cisco Wide Area Application Services 5.3\\(.5\\)
Cisco Wide Area Application Services 5.1\\(.1e\\)
Cisco Wide Area Application Services 5.1\\(.1c\\)
Cisco Wide Area Application Services
Cisco Wide Area Application Services 5.3\\(.3\\)
Cisco Wide Area Application Services 5.1\\(.1f\\)
Cisco Wide Area Application Services 5.1\\(.1d\\)
Cisco Wide Area Application Services 5.1\\(.1b\\)
Cisco Wide Area Application Services 5.1
Cisco Wide Area Application Services 5.1\\(.1a\\)
Cisco Wide Area Application Services 5.1\\(.1\\)
5
CVSSv2
CVE-2013-0081
Microsoft SharePoint Portal Server 2003 SP3 and SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013 do not properly process unassigned workflows, which allows remote malicious users to cause a denial of service (W3WP process hang) via a crafted URL, aka "SharePoint Denial...
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Server 2013
Microsoft Sharepoint Foundation 2013
Microsoft Sharepoint Portal Server 2003
Microsoft Sharepoint Services 3.0
Microsoft Sharepoint Services 2.0
5
CVSSv2
CVE-2009-3830
The download functionality in Team Services in Microsoft Office SharePoint Server 2007 12.0.0.4518 and 12.0.0.6219 allows remote malicious users to read ASP.NET source code via pathnames in the SourceUrl and Source parameters to _layouts/download.aspx.
Microsoft Sharepoint Server 2007
1 EDB exploit
5
CVSSv2
CVE-2003-0824
Unknown vulnerability in the SmartHTML interpreter (shtml.dll) in Microsoft FrontPage Server Extensions 2000 and 2002, and Microsoft SharePoint Team Services 2002, allows remote malicious users to cause a denial of service (response failure) via a certain request.
Microsoft Frontpage Server Extensions 2002
Microsoft Sharepoint Team Services 2002
Microsoft Frontpage Server Extensions 2000
Microsoft Windows 2000
Microsoft Windows Xp
4.3
CVSSv2
CVE-2019-0561
An information disclosure vulnerability exists when Microsoft Word macro buttons are used improperly, aka "Microsoft Word Information Disclosure Vulnerability." This affects Microsoft Word, Office 365 ProPlus, Microsoft Office, Word.
Microsoft Office 2010
Microsoft Word 2013
Microsoft Office 365 Proplus -
Microsoft Word Automation Services -
Microsoft Sharepoint Server 2010
Microsoft Office 2019
Microsoft Office Web Apps Server 2010
Microsoft Word 2010
Microsoft Office 2016
Microsoft Word 2016
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »