6 matches found
EUVD-2018-20197
Malware in sbrugna...
CVE-2020-1103
An information disclosure vulnerability exists where certain modes of the search function in Microsoft SharePoint Server are vulnerable to cross-site search attacks a variant of cross-site request forgery, CSRF.When users are simultaneously logged in to Microsoft SharePoint Server and visit a...
CVE-2020-1103
CVE-2020-1103 is an information-disclosure vulnerability in Microsoft SharePoint Server. The issue affects how certain search modes handle CSRF-like browser behavior: when a logged-in user visits a malicious page, the browser can issue search queries on behalf of the user. The impact, as describe...
Security Updates for Microsoft Sharepoint Server (December 2018)
The Microsoft Sharepoint Server installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists when Microsoft Excel software reads out of bound memory due to an uninitialized variable, which...
Information disclosure
An information disclosure vulnerability exists where certain modes of the search function in Microsoft SharePoint Server are vulnerable to cross-site search attacks a variant of cross-site request forgery, CSRF, aka "Microsoft SharePoint Information Disclosure Vulnerability." This affects Microso...
CVE-2018-8580
CVE-2018-8580 is an information-disclosure vulnerability in Microsoft SharePoint Server where certain search modes are vulnerable to a CSRF-like cross-site search attack. An attacker can induce queries as a logged-in user to infer whether documents are present in search results, without exposing ...