Sharepoint_enterprise_server - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Sharepoint_enterprise_server
(Microsoft)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	242

Date	Id	Summary	Products	Score	Patch	Annotated
2020-05-21	CVE-2020-1106	A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-1099, CVE-2020-1100, CVE-2020-1101.	Sharepoint_enterprise_server, Sharepoint_foundation, Sharepoint_server	6.1
2020-05-21	CVE-2020-1107	A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2020-1104, CVE-2020-1105.	Sharepoint_enterprise_server, Sharepoint_foundation, Sharepoint_server	5.4
2020-06-09	CVE-2020-1148	A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2020-1289.	Sharepoint_enterprise_server, Sharepoint_server	5.4
2020-06-09	CVE-2020-1177	A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-1183, CVE-2020-1297, CVE-2020-1298, CVE-2020-1318, CVE-2020-1320.	Sharepoint_enterprise_server, Sharepoint_foundation, Sharepoint_server	5.4
2020-06-09	CVE-2020-1178	An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted authentication request to an affected SharePoint server, aka 'Microsoft SharePoint Server Elevation of Privilege Vulnerability'.	Sharepoint_enterprise_server, Sharepoint_server	8.8
2020-06-09	CVE-2020-1181	A remote code execution vulnerability exists in Microsoft SharePoint Server when it fails to properly identify and filter unsafe ASP.Net web controls, aka 'Microsoft SharePoint Server Remote Code Execution Vulnerability'.	Sharepoint_enterprise_server, Sharepoint_foundation, Sharepoint_server	8.8
2020-06-09	CVE-2020-1183	A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-1177, CVE-2020-1297, CVE-2020-1298, CVE-2020-1318, CVE-2020-1320.	Sharepoint_enterprise_server, Sharepoint_foundation, Sharepoint_server	5.4
2020-06-09	CVE-2020-1295	An elevation of privilege vulnerability exists in Microsoft SharePoint, aka 'Microsoft SharePoint Elevation of Privilege Vulnerability'.	Sharepoint_enterprise_server, Sharepoint_server	8.8
2020-06-09	CVE-2020-1297	A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-1177, CVE-2020-1183, CVE-2020-1298, CVE-2020-1318, CVE-2020-1320.	Sharepoint_enterprise_server, Sharepoint_foundation, Sharepoint_server	5.4
2020-06-09	CVE-2020-1298	A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-1177, CVE-2020-1183, CVE-2020-1297, CVE-2020-1318, CVE-2020-1320.	Sharepoint_enterprise_server, Sharepoint_foundation, Sharepoint_server	5.4