4 matches found
CVE-2017-11820
Microsoft SharePoint Enterprise Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an attacker to exploit a cross-site scripting XSS vulnerability by sending a specially crafted request to an affected SharePoint server, due to how SharePoint Server sanitizes web requests, aka...
Cross site scripting
Microsoft SharePoint Enterprise Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an attacker to exploit a cross-site scripting XSS vulnerability by sending a specially crafted request to an affected SharePoint server, due to how SharePoint Server sanitizes web requests, aka...
CVE-2017-11820
The CVE-2017-11820 entry describes a cross-site scripting (XSS) vulnerability in Microsoft SharePoint Enterprise Server 2013 SP1 and SharePoint Enterprise Server 2016. The root cause is a sanitization flaw in SharePoint Server that allows crafting requests to bypass proper input handling. Impact ...
Security Updates for Microsoft Sharepoint Server (October 2017)
The Microsoft Sharepoint Server installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities : - A cross-site scripting XSS vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an...