Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft sharepoint server 2007 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2012-1863
Cross-site scripting (XSS) vulnerability in Microsoft Office SharePoint Server 2007 SP2 and SP3 Windows SharePoint Services 3.0 SP2, and SharePoint Foundation 2010 Gold and SP1 allows remote malicious users to inject arbitrary web script or HTML via crafted JavaScript elements in...
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Services 3.0
Microsoft Office Sharepoint Server 2007
Microsoft Sharepoint Foundation 2010
405
VMScore
CVE-2011-1892
Microsoft Office Groove 2007 SP2, SharePoint Workspace 2010 Gold and SP1, Office Forms Server 2007 SP2, Office SharePoint Server 2007 SP2, Office SharePoint Server 2010 Gold and SP1, Office Groove Data Bridge Server 2007 SP2, Office Groove Management Server 2007 SP2, Groove Serve...
Microsoft Sharepoint Workspace 2010
Microsoft Sharepoint Server 2010
Microsoft Office Web Apps 2010
Microsoft Forms Server 2007
Microsoft Groove Server 2010
Microsoft Sharepoint Services 3.0
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Foundation 2010
Microsoft Groove 2007
Microsoft Groove Data Bridge Server 2007
Microsoft Groove Management Server 2007
1 EDB exploit
312
VMScore
CVE-2010-0716
_layouts/Upload.aspx in the Documents module in Microsoft SharePoint prior to 2010 uses URLs with the same hostname and port number for a web site's primary files and individual users' uploaded files (aka attachments), which allows remote authenticated users to leverage...
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Server
383
VMScore
CVE-2015-2556
The InfoPath Forms Services component in Microsoft SharePoint Server 2007 SP3 and 2010 SP2 misparses DTDs, which allows remote malicious users to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to...
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Server 2010
534
VMScore
CVE-2015-1700
Microsoft SharePoint Server 2007 SP3, SharePoint Foundation 2010 SP2, SharePoint Server 2010 SP2, and SharePoint Foundation 2013 SP1 allow remote authenticated users to execute arbitrary code via crafted page content, aka "Microsoft SharePoint Page Content Vulnerabilities.&q...
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Server 2013
828
VMScore
CVE-2017-8513
A remote code execution vulnerability exists in Microsoft PowerPoint when the software fails to properly handle objects in memory, aka "Microsoft PowerPoint Remote Code Execution Vulnerability".
Microsoft Powerpoint 2007
Microsoft Sharepoint Server 2007
383
VMScore
CVE-2012-2520
Cross-site scripting (XSS) vulnerability in Microsoft InfoPath 2007 SP2 and SP3 and 2010 SP1, Communicator 2007 R2, Lync 2010 and 2010 Attendee, SharePoint Server 2007 SP2 and SP3 and 2010 SP1, Groove Server 2010 SP1, Windows SharePoint Services 3.0 SP2, SharePoint Foundation 201...
Microsoft Office Communicator 2007
Microsoft Lync 2010
Microsoft Office Web Apps 2010
Microsoft Sharepoint Server 2007
Microsoft Infopath 2007
Microsoft Infopath 2010
Microsoft Groove Server 2010
Microsoft Sharepoint Services 3.0
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Server 2010
435
VMScore
CVE-2013-3179
Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013 allows remote malicious users to inject arbitrary web script or HTML via a crafted request, aka "SharePoint XSS Vulnerability."
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Services 3.0
1 EDB exploit
435
VMScore
CVE-2010-0817
Cross-site scripting (XSS) vulnerability in _layouts/help.aspx in Microsoft SharePoint Server 2007 12.0.0.6421 and possibly earlier, and SharePoint Services 3.0 SP1 and SP2, versions, allows remote malicious users to inject arbitrary web script or HTML via the cid0 parameter.
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Services 3.0
1 EDB exploit
605
VMScore
CVE-2013-3895
Microsoft SharePoint Server 2007 SP3 and 2010 SP1 and SP2 allows remote malicious users to conduct clickjacking attacks via a crafted web page, aka "Parameter Injection Vulnerability."
Microsoft Office Web Apps 2010
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Server 2013
Microsoft Sharepoint Server 2007
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »