Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sharepoint server 2010 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2012-2520
Cross-site scripting (XSS) vulnerability in Microsoft InfoPath 2007 SP2 and SP3 and 2010 SP1, Communicator 2007 R2, Lync 2010 and 2010 Attendee, SharePoint Server 2007 SP2 and SP3 and 2010 SP1, Groove Server 2010 SP1, Windows SharePoint Services 3.0 SP2, SharePoint Foundation 201...
Microsoft Office Communicator 2007
Microsoft Lync 2010
Microsoft Office Web Apps 2010
Microsoft Sharepoint Server 2007
Microsoft Infopath 2007
Microsoft Infopath 2010
Microsoft Groove Server 2010
Microsoft Sharepoint Services 3.0
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Server 2010
490
VMScore
CVE-2012-1860
Microsoft Office SharePoint Server 2007 SP2 and SP3, SharePoint Server 2010 Gold and SP1, and Office Web Apps 2010 Gold and SP1 do not properly check permissions for search scopes, which allows remote authenticated users to obtain sensitive information or cause a denial of servic...
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Server 2010
Microsoft Office Web Apps 2010
383
VMScore
CVE-2012-1859
Cross-site scripting (XSS) vulnerability in scriptresx.ashx in Microsoft SharePoint Server 2010 Gold and SP1, SharePoint Foundation 2010 Gold and SP1, and Office Web Apps 2010 Gold and SP1 allows remote malicious users to inject arbitrary web script or HTML via crafted JavaScript...
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Foundation 2010
Microsoft Office Web Apps 2010
383
VMScore
CVE-2012-1861
Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Server 2010 Gold and SP1, SharePoint Foundation 2010 Gold and SP1, and Office Web Apps 2010 Gold and SP1 allows remote malicious users to inject arbitrary web script or HTML via crafted JavaScript elements in a URL,...
Microsoft Sharepoint Foundation 2010
Microsoft Office Web Apps 2010
Microsoft Sharepoint Server 2010
445
VMScore
CVE-2013-0081
Microsoft SharePoint Portal Server 2003 SP3 and SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013 do not properly process unassigned workflows, which allows remote malicious users to cause a denial of service (W3WP process hang) via a crafted URL, aka "SharePoint Denial...
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Server 2013
Microsoft Sharepoint Foundation 2013
Microsoft Sharepoint Portal Server 2003
Microsoft Sharepoint Services 3.0
Microsoft Sharepoint Services 2.0
383
VMScore
CVE-2011-1893
Cross-site scripting (XSS) vulnerability in Microsoft Office SharePoint Server 2010, Windows SharePoint Services 2.0 and 3.0 SP2, and SharePoint Foundation 2010 allows remote malicious users to inject arbitrary web script or HTML via the URI, aka "SharePoint XSS Vulnerabilit...
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Services 2.0
Microsoft Sharepoint Services 3.0
Microsoft Sharepoint Foundation 2010
383
VMScore
CVE-2018-8580
An information disclosure vulnerability exists where certain modes of the search function in Microsoft SharePoint Server are vulnerable to cross-site search attacks (a variant of cross-site request forgery, CSRF), aka "Microsoft SharePoint Information Disclosure Vulnerabilit...
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Server 2013
Microsoft Sharepoint Server 2016
312
VMScore
CVE-2018-8149
An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft SharePoint Elevation of Privilege Vulnerability." This affects Microsoft SharePoin...
Microsoft Sharepoint Server 2013
Microsoft Sharepoint Server 2016
Microsoft Sharepoint Server 2010
383
VMScore
CVE-2015-2556
The InfoPath Forms Services component in Microsoft SharePoint Server 2007 SP3 and 2010 SP2 misparses DTDs, which allows remote malicious users to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to...
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Server 2010
312
VMScore
CVE-2018-8168
An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft SharePoint Elevation of Privilege Vulnerability." This affects Microsoft SharePoin...
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Server 2013
1 Article
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »