Published: 14/07/2020 Updated: 02/09/2022

CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8

CVSS v3 Base Score: 5.4 | Impact Score: 2.7 | Exploitability Score: 2.3

VMScore: 312

Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-1450, CVE-2020-1451.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft sharepoint server 2010
microsoft sharepoint enterprise server 2016
microsoft sharepoint enterprise server 2013
microsoft sharepoint server 2019

CWE-79 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1456 https://slashcrypto.org/2021/01/15/CVE-2020-1456/https://it-sec.de/ger/Aktuelles-Termine/it.sec-blog/it.sec-Research-Team-findet-unbekannte-Schwachstelle-in-Microsoft-Office-SharePoint https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-1456

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect