Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sharepoint services vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2011-1893
Cross-site scripting (XSS) vulnerability in Microsoft Office SharePoint Server 2010, Windows SharePoint Services 2.0 and 3.0 SP2, and SharePoint Foundation 2010 allows remote malicious users to inject arbitrary web script or HTML via the URI, aka "SharePoint XSS Vulnerabilit...
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Services 2.0
Microsoft Sharepoint Services 3.0
Microsoft Sharepoint Foundation 2010
445
VMScore
CVE-2013-0081
Microsoft SharePoint Portal Server 2003 SP3 and SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013 do not properly process unassigned workflows, which allows remote malicious users to cause a denial of service (W3WP process hang) via a crafted URL, aka "SharePoint Denial...
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Server 2013
Microsoft Sharepoint Foundation 2013
Microsoft Sharepoint Portal Server 2003
Microsoft Sharepoint Services 3.0
Microsoft Sharepoint Services 2.0
890
VMScore
CVE-2013-1330
The default configuration of Microsoft SharePoint Portal Server 2003 SP3, SharePoint Server 2007 SP3 and 2010 SP1 and SP2, and Office Web Apps 2010 does not set the EnableViewStateMac attribute, which allows remote malicious users to execute arbitrary code by leveraging an unassi...
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Services 2.0
Microsoft Sharepoint Portal Server 2003
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Services 3.0
Microsoft Office Web Apps 2010
383
VMScore
CVE-2011-1891
Cross-site scripting (XSS) vulnerability in Microsoft Windows SharePoint Services 3.0 SP2, and SharePoint Foundation 2010 Gold and SP1, allows remote malicious users to inject arbitrary web script or HTML via unspecified parameters in a request to a script, aka "Contact Deta...
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Services 3.0
435
VMScore
CVE-2010-0817
Cross-site scripting (XSS) vulnerability in _layouts/help.aspx in Microsoft SharePoint Server 2007 12.0.0.6421 and possibly earlier, and SharePoint Services 3.0 SP1 and SP2, versions, allows remote malicious users to inject arbitrary web script or HTML via the cid0 parameter.
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Services 3.0
1 EDB exploit
383
VMScore
CVE-2005-0049
Windows SharePoint Services and SharePoint Team Services for Windows Server 2003 does not properly validate an HTTP redirection query, which allows remote malicious users to inject arbitrary HTML and web script via a cross-site scripting (XSS) attack, or to spoof the web cache.
Microsoft Sharepoint Portal Server 2003
Microsoft Sharepoint Team Services
435
VMScore
CVE-2013-3179
Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013 allows remote malicious users to inject arbitrary web script or HTML via a crafted request, aka "SharePoint XSS Vulnerability."
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Services 3.0
1 EDB exploit
383
VMScore
CVE-2012-1863
Cross-site scripting (XSS) vulnerability in Microsoft Office SharePoint Server 2007 SP2 and SP3 Windows SharePoint Services 3.0 SP2, and SharePoint Foundation 2010 Gold and SP1 allows remote malicious users to inject arbitrary web script or HTML via crafted JavaScript elements in...
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Services 3.0
Microsoft Office Sharepoint Server 2007
Microsoft Sharepoint Foundation 2010
356
VMScore
CVE-2010-1264
Unspecified vulnerability in Microsoft Windows SharePoint Services 3.0 SP1 and SP2 allows remote malicious users to cause a denial of service (hang) via crafted requests to the Help page that cause repeated restarts of the application pool, aka "Sharepoint Help Page Denial o...
Microsoft Sharepoint Services 3.0
383
VMScore
CVE-2010-3243
Cross-site scripting (XSS) vulnerability in the toStaticHTML function in Microsoft Internet Explorer 8, and the SafeHTML function in Microsoft Windows SharePoint Services 3.0 SP2 and Office SharePoint Server 2007 SP2, allows remote malicious users to inject arbitrary web script o...
Microsoft Sharepoint Services 3.0
Microsoft Sharepoint Server 2007
Microsoft Internet Explorer 8
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »