Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2018-20197

Malware in sbrugna...

4.3CVSS6.5AI score0.043EPSS
Exploits0References3
Cvelist
Cvelist
added 2020/05/21 10:53 p.m.26 views

CVE-2020-1103

An information disclosure vulnerability exists where certain modes of the search function in Microsoft SharePoint Server are vulnerable to cross-site search attacks a variant of cross-site request forgery, CSRF.When users are simultaneously logged in to Microsoft SharePoint Server and visit a...

6.8AI score0.0274EPSS
Exploits0References1
CVE
CVE
added 2020/05/21 10:53 p.m.105 views

CVE-2020-1103

CVE-2020-1103 is an information-disclosure vulnerability in Microsoft SharePoint Server. The issue affects how certain search modes handle CSRF-like browser behavior: when a logged-in user visits a malicious page, the browser can issue search queries on behalf of the user. The impact, as describe...

6.5CVSS6.4AI score0.0274EPSS
Exploits0References1Affected Software3
Tenable Nessus
Tenable Nessus
added 2018/12/14 12:0 a.m.172 views

Security Updates for Microsoft Sharepoint Server (December 2018)

The Microsoft Sharepoint Server installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists when Microsoft Excel software reads out of bound memory due to an uninitialized variable, which...

9.3CVSS7.4AI score0.162EPSS
Exploits0References11
Prion
Prion
added 2018/12/12 12:29 a.m.19 views

Information disclosure

An information disclosure vulnerability exists where certain modes of the search function in Microsoft SharePoint Server are vulnerable to cross-site search attacks a variant of cross-site request forgery, CSRF, aka "Microsoft SharePoint Information Disclosure Vulnerability." This affects Microso...

4.3CVSS4.2AI score0.043EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2018/12/12 12:0 a.m.95 views

CVE-2018-8580

CVE-2018-8580 is an information-disclosure vulnerability in Microsoft SharePoint Server where certain search modes are vulnerable to a CSRF-like cross-site search attack. An attacker can induce queries as a logged-in user to infer whether documents are present in search results, without exposing ...

4.3CVSS4AI score0.043EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder