3 matches found
VulnCheck KEV: CVE-2018-8580
An information disclosure vulnerability exists where certain modes of the search function in Microsoft SharePoint Server are vulnerable to cross-site search attacks a variant of cross-site request forgery, CSRF, aka "Microsoft SharePoint Information Disclosure Vulnerability." This affects...
CVE-2018-8580
creationtimestamp| type| source ---|---|--- 2019-02-01 12:53:41+00:00| seen| MISP/5c543c87-503c-4622-a292-0aa6ac12042b 2020-10-09 15:53:03+00:00| seen| MISP/0b0f374b-39b1-4229-891b-2defd31fe736 2025-01-28 21:01:59+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lgte2h2saz27...
CVE-2018-8580
CVE-2018-8580 is an information-disclosure vulnerability in Microsoft SharePoint Server where certain search modes are vulnerable to a CSRF-like cross-site search attack. An attacker can induce queries as a logged-in user to infer whether documents are present in search results, without exposing ...