Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2015/04/15 12:0 a.m.29 views

Microsoft SharePoint Server and Foundation Elevation of Privilege Vulnerability (3052044)

This host is missing an important security update according to Microsoft Bulletin MS15-036. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

4.3CVSS6.3AI score0.08863EPSS
Exploits0References2
Cvelist
Cvelist
added 2015/04/14 8:0 p.m.36 views

CVE-2015-1653

Cross-site scripting XSS vulnerability in Microsoft SharePoint Foundation 2013 SP1 and SharePoint Server 2013 SP1 allows remote attackers to inject arbitrary web script or HTML via a crafted request, aka "Microsoft SharePoint XSS Vulnerability."...

5AI score0.08863EPSS
Exploits0References2
CVE
CVE
added 2015/04/14 8:0 p.m.82 views

CVE-2015-1653

CVE-2015-1653 is a cross-site scripting (XSS) vulnerability in Microsoft SharePoint Foundation 2013 SP1 and SharePoint Server 2013 SP1. The issue allows remote attackers to inject arbitrary web script or HTML via a crafted request. Affected products include SharePoint Server and Foundation compon...

4.3CVSS5AI score0.08863EPSS
Exploits0References2Affected Software2
Kaspersky
Kaspersky
added 2015/04/14 12:0 a.m.45 views

KLA10561 Code injection vulnerability in Microsoft Sharepoint

An XSS vulnerabilities were found in Microsoft Sharepoint. By exploiting these vulnerabilities malicious users can inject arbitrary scripts. These vulnerabilities can be exploited remotely via a specially designed request. Original advisories MS15-036 CVE-2015-1653 CVE-2015-1640 Related products...

4.3CVSS6.3AI score0.08863EPSS
Exploits0References8
Check Point Advisories
Check Point Advisories
added 2015/04/14 12:0 a.m.6 views

Microsoft SharePoint Cross-site Scripting (MS15-036; CVE-2015-1653)

An elevation of privilege vulnerability exists in Microsoft SharePoint Server. The vulnerability is caused when SharePoint Server does not properly sanitize a specially crafted request. An authenticated attacker could exploit this vulnerability by sending a specially crafted request to an affecte...

4.3CVSS2.6AI score0.08863EPSS
Exploits0
Rows per page
Query Builder