CVE-2026-20945

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

Description of the security update for SharePoint Server 2019 Language Pack: April 14, 2026 (KB5002856)

Description of the security update for SharePoint Server 2019 Language Pack: April 14, 2026 KB5002856 Summary Important: If you're running 2013-type workflows, you mustinstall the August 2025 update for SharePoint Workflow Manager​​​​​​​to your farm before you install this cumulative update. If...

Security Updates for Microsoft SharePoint Server Subscription Edition (April 2026)

The Microsoft SharePoint Server Subscription Edition installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Spoofing vulnerabilities CVE-2026-20945, CVE-2026-32201 Note that Nessus has not tested for these issues but has instead reli...

Security Updates for Microsoft SharePoint Server 2016 (April 2026)

The Microsoft SharePoint 2016 Server installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Spoofing vulnerabilities CVE-2026-20945, CVE-2026-32201 Note that Nessus has not tested for these issues but has instead relied only on the...