2 matches found
CVE-2025-24989
CVE-2025-24989 is an elevation of privilege vulnerability in Microsoft Power Pages caused by improper access control. Public sources in the provided documents consistently describe it as allowing an unauthorized networked attacker to bypass the user registration control and escalate privileges. R...
CVE-2026-23652
Microsoft Power Pages is affected by CVE-2026-23652, a remote code execution vulnerability due to improper neutralization of special elements used in a command injection. The issue allows an unauthenticated attacker to trigger code execution over the network with no user interaction, by exploitin...