Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Sharepoint_enterprise_server
(Microsoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 242 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2020-06-09 | CVE-2020-1318 | A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-1177, CVE-2020-1183, CVE-2020-1297, CVE-2020-1298, CVE-2020-1320. | Sharepoint_enterprise_server, Sharepoint_foundation, Sharepoint_server | 5.4 | ||
| 2020-06-09 | CVE-2020-1320 | A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-1177, CVE-2020-1183, CVE-2020-1297, CVE-2020-1298, CVE-2020-1318. | Sharepoint_enterprise_server, Sharepoint_foundation, Sharepoint_server | 5.4 | ||
| 2020-07-14 | CVE-2020-1450 | A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-1451, CVE-2020-1456. | Sharepoint_enterprise_server, Sharepoint_server | 5.4 | ||
| 2020-07-14 | CVE-2020-1451 | A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-1450, CVE-2020-1456. | Sharepoint_enterprise_server, Sharepoint_server | 5.4 | ||
| 2020-07-14 | CVE-2020-1454 | This vulnerability is caused when SharePoint Server does not properly sanitize a specially crafted request to an affected SharePoint server.An authenticated attacker could exploit this vulnerability by sending a specially crafted request to an affected SharePoint server, aka 'Microsoft SharePoint Reflective XSS Vulnerability'. | Sharepoint_enterprise_server, Sharepoint_server | 5.4 | ||
| 2020-07-14 | CVE-2020-1456 | A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-1450, CVE-2020-1451. | Sharepoint_enterprise_server, Sharepoint_server | 5.4 | ||
| 2021-05-11 | CVE-2021-31181 | Microsoft SharePoint Remote Code Execution Vulnerability | Sharepoint_enterprise_server, Sharepoint_foundation, Sharepoint_server | N/A | ||
| 2021-10-13 | CVE-2021-40485 | Microsoft Excel Remote Code Execution Vulnerability | 365_apps, Excel, Office, Office_long_term_servicing_channel, Office_online_server, Sharepoint_enterprise_server | N/A | ||
| 2021-10-13 | CVE-2021-40487 | Microsoft SharePoint Server Remote Code Execution Vulnerability | Sharepoint_enterprise_server, Sharepoint_foundation, Sharepoint_server | N/A | ||
| 2022-11-09 | CVE-2022-41061 | Microsoft Word Remote Code Execution Vulnerability | 365_apps, Office, Office_online_server, Office_web_apps_server, Sharepoint_enterprise_server, Sharepoint_server, Word | N/A |