Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrosoftSharepoint Foundation

15 matches found

cve
cveadded 2019/07/15 7:15 p.m.276 views

CVE-2019-1006

An authentication bypass vulnerability exists in Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF), allowing signing of SAML tokens with arbitrary symmetric keys, aka 'WCF/WIF SAML Token Authentication Bypass Vulnerability'.

7.5CVSS7.8AI score0.02931EPSS
cve
cveadded 2013/03/13 12:55 a.m.143 views

CVE-2013-0084

Directory traversal vulnerability in Microsoft SharePoint Server 2010 SP1 and SharePoint Foundation 2010 SP1 allows remote attackers to bypass intended read restrictions for content, and hijack user accounts, via a crafted URL, aka "SharePoint Directory Traversal Vulnerability."

7.5CVSS6.5AI score0.28777EPSS
cve
cveadded 2021/05/11 7:15 p.m.139 views

CVE-2021-26418

Microsoft SharePoint Server Spoofing Vulnerability

7.1CVSS5.2AI score0.00773EPSS
cve
cveadded 2021/06/08 11:15 p.m.139 views

CVE-2021-31966

Microsoft SharePoint Server Remote Code Execution Vulnerability

7.2CVSS7.2AI score0.13101EPSS
cve
cveadded 2021/05/11 7:15 p.m.138 views

CVE-2021-31172

Microsoft SharePoint Server Spoofing Vulnerability

7.1CVSS6.8AI score0.04736EPSS
cve
cveadded 2013/03/13 12:55 a.m.135 views

CVE-2013-0080

Microsoft SharePoint Server 2010 SP1 and SharePoint Foundation 2010 SP1 allow remote attackers to bypass intended read restrictions for content, and hijack user accounts, via a crafted URL, aka "Callback Function Vulnerability."

7.5CVSS6.5AI score0.41937EPSS
cve
cveadded 2020/09/11 5:15 p.m.134 views

CVE-2020-1198

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint ...

7.4CVSS7AI score0.00518EPSS
cve
cveadded 2021/05/11 7:15 p.m.126 views

CVE-2021-28478

Microsoft SharePoint Server Spoofing Vulnerability

7.6CVSS7.1AI score0.02955EPSS
cve
cveadded 2020/09/11 5:15 p.m.106 views

CVE-2020-1345

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint ...

7.4CVSS7.3AI score0.00536EPSS
cve
cveadded 2021/09/15 12:15 p.m.104 views

CVE-2021-38652

Microsoft SharePoint Server Spoofing Vulnerability

7.6CVSS5.2AI score0.01283EPSS
cve
cveadded 2021/09/15 12:15 p.m.96 views

CVE-2021-38651

Microsoft SharePoint Server Spoofing Vulnerability

7.6CVSS5.2AI score0.0108EPSS
cve
cveadded 2021/10/13 1:15 a.m.87 views

CVE-2021-40484

Microsoft SharePoint Server Spoofing Vulnerability

7.6CVSS5.4AI score0.06132EPSS
cve
cveadded 2021/12/15 3:15 p.m.78 views

CVE-2021-43242

Microsoft SharePoint Server Spoofing Vulnerability

7.6CVSS6.4AI score0.00826EPSS
cve
cveadded 2021/12/15 3:15 p.m.74 views

CVE-2021-42294

Microsoft SharePoint Server Remote Code Execution Vulnerability

7.2CVSS7.8AI score0.01091EPSS
cve
cveadded 2013/03/13 12:55 a.m.52 views

CVE-2013-0085

Buffer overflow in Microsoft SharePoint Server 2010 SP1 and SharePoint Foundation 2010 SP1 allows remote attackers to cause a denial of service (W3WP process crash and site outage) via a crafted URL, aka "Buffer Overflow Vulnerability."

7.8CVSS6.8AI score0.68083EPSS