Lucene search
K

4 matches found

NVD
NVD
added 2017/10/13 1:29 p.m.34 views

CVE-2017-11820

Microsoft SharePoint Enterprise Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an attacker to exploit a cross-site scripting XSS vulnerability by sending a specially crafted request to an affected SharePoint server, due to how SharePoint Server sanitizes web requests, aka...

5.4CVSS5.1AI score0.02267EPSS
Exploits0References3
Prion
Prion
added 2017/10/13 1:29 p.m.22 views

Cross site scripting

Microsoft SharePoint Enterprise Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an attacker to exploit a cross-site scripting XSS vulnerability by sending a specially crafted request to an affected SharePoint server, due to how SharePoint Server sanitizes web requests, aka...

3.5CVSS5.2AI score0.02267EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2017/10/13 1:0 p.m.109 views

CVE-2017-11820

The CVE-2017-11820 entry describes a cross-site scripting (XSS) vulnerability in Microsoft SharePoint Enterprise Server 2013 SP1 and SharePoint Enterprise Server 2016. The root cause is a sanitization flaw in SharePoint Server that allows crafting requests to bypass proper input handling. Impact ...

5.4CVSS5.2AI score0.02267EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/10/11 12:0 a.m.252 views

Security Updates for Microsoft Sharepoint Server (October 2017)

The Microsoft Sharepoint Server installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities : - A cross-site scripting XSS vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an...

9.3CVSS7.4AI score0.81627EPSS
Exploits3References9
Rows per page
Query Builder