10 matches found
EUVD-2026-17865
Blind server-side request forgery SSRF vulnerability in legacy connection methods of document co-authoring features in M-Files Server before 26.3 allow an unauthenticated attacker to cause the server to send HTTP GET requests to arbitrary URLs...
CVE-2026-0932
Blind server-side request forgery SSRF vulnerability in legacy connection methods of document co-authoring features in M-Files Server before 26.3 allow an unauthenticated attacker to cause the server to send HTTP GET requests to arbitrary URLs...
CVE-2026-0932
CVE-2026-0932 describes a blind SSRF in the legacy document co-authoring connection methods of M-Files Server prior to version 26.3. An unauthenticated attacker can trigger the server to render HTTP GET requests to arbitrary URLs, potentially leaking internal data or being abused for access to ex...
CVE-2026-0932
Blind server-side request forgery SSRF vulnerability in legacy connection methods of document co-authoring features in M-Files Server before 26.3 allow an unauthenticated attacker to cause the server to send HTTP GET requests to arbitrary URLs...
Description of the security update for SharePoint Enterprise Server 2016: November 10, 2020
Description of the security update for SharePoint Enterprise Server 2016: November 10, 2020 Notice We declare System.Web.UI.WebControls.PasswordRecovery to be an unsafe control because of security concerns. Therefore, we recommend that you no longer use it. Summary This security update resolves...
Description of the security update for SharePoint Server 2019: April 9, 2019
Description of the security update for SharePoint Server 2019: April 9, 2019 Summary This security update resolves a cross-site–scripting XSS vulnerability that exists when Microsoft SharePoint Server does not correctly sanitize a specially crafted web request that's made to an affected SharePoin...
Description of the security update for SharePoint Foundation 2013: January 9, 2018
Description of the security update for SharePoint Foundation 2013: January 9, 2018 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see...
Description of the security update for PowerPoint 2010: September 12, 2017
Description of the security update for PowerPoint 2010: September 12, 2017 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft...
MS16-088: Description of the security update for SharePoint Server 2016: July 12, 2016
MS16-088: Description of the security update for SharePoint Server 2016: July 12, 2016 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see...
Security update 1970-01-01
...