CVE-2013-1290
CVE-2013-1290 affects Microsoft SharePoint Server 2013 in configurations using legacy My Sites, where default access controls for a SharePoint list are not properly enforced. This allows remote authenticated users to disclose list item data by directly requesting a list’s location, i.e., informat...