7 matches found
VulnCheck KEV: CVE-2023-21742
Microsoft SharePoint Server Remote Code Execution Vulnerability...
Exploit for Improper Access Control in Microsoft
CVE-2023-21742 PoC Attention: It's only a PoC to leak the...
Security Updates for Microsoft SharePoint Server Subscription Edition (January 2023)
The Microsoft SharePoint Server Subscription Edition installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A security feature bypass vulnerability exists. An attacker can exploit this and bypass the security feature and perform...
Security Updates for Microsoft SharePoint Foundation 2013 (January 2023)
The Microsoft SharePoint Foundation 2013 installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands...
CVE-2023-21742
Microsoft SharePoint Server Remote Code Execution Vulnerability...
CVE-2023-21742
CVE-2023-21742 affects Microsoft SharePoint Server family. A GitHub PoC for CVE-2023-21742 demonstrates an Improper Access Control path in SharePoint’s webpartpages (POST to _vti_bin/webpartpages.asmx, ConvertWebPartFormat) that leaks an attribute/property; the PoC explicitly notes it is not a fu...
KLA20157 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Offi...