3 matches found
CVE-2019-1036
CVE-2019-1036 describes a cross-site scripting (XSS) vulnerability in Microsoft SharePoint Server where an attacker with authentication can exploit insufficient sanitization of crafted web requests. Successful exploitation could allow the attacker to execute scripts in the user’s browser, read co...
Description of the security update for SharePoint Foundation 2013: June 11, 2019
Description of the security update for SharePoint Foundation 2013: June 11, 2019 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see the...
Microsoft Office SharePoint CVE-2019-1036 Cross Site Scripting Vulnerability
Description Microsoft Office SharePoint is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This...