CVSS: 8.8EPSS: 46%CPEs: 2EXPL: 1CVE-2020-1102 – Microsoft SharePoint Shared Forms Incomplete Blacklist Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-1102
12 May 2020 — A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1023, CVE-2020-1024. Existe una vulnerabilidad de ejecución de código remota en Microsoft SharePoint cuando el software falla al comprobar el marcado de origen de un paquete de aplicaciones, también se conoce como "Microsoft SharePoint Remote Code Execution Vulnera... • https://github.com/DanielRuf/snyk-js-jquery-565129 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 9.3EPSS: 33%CPEs: 15EXPL: 0CVE-2020-0980
https://notcve.org/view.php?id=CVE-2020-0980
15 Apr 2020 — A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. Hay una vulnerabilidad de ejecución de código remota en el software Microsoft Word cuando da un fallo al manejar apropiadamente objetos en memoria, también se conoce como "Microsoft Word Remote Code Execution Vulnerability". • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0980 •
CVSS: 9.3EPSS: 0%CPEs: 3EXPL: 0CVE-2020-0978
https://notcve.org/view.php?id=CVE-2020-0978
15 Apr 2020 — A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-0923, CVE-2020-0924, CVE-2020-0925, CVE-2020-0926, CVE-2020-0927, CVE-2020-0930, CVE-2020-0933, CVE-2020-0954, CVE-2020-0973. Hay una vulnerabilidad de tipo cross-site-scripting (XSS) cuando Microsoft SharePoint Server no sanea apropiadamente una ... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0978 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 2EXPL: 1CVE-2020-0976
https://notcve.org/view.php?id=CVE-2020-0976
15 Apr 2020 — A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2020-0972, CVE-2020-0975, CVE-2020-0977. Hay una vulnerabilidad de "spoofing" cuando Microsoft SharePoint Server no sanea apropiadamente una petición web especialmente diseñada para un servidor SharePoint afectado, también se conoce como "Microsoft SharePoint Spoofing Vul... • https://github.com/ericzhong2010/GUI-Check-CVE-2020-0976 •
CVSS: 5.4EPSS: 0%CPEs: 3EXPL: 0CVE-2020-0977
https://notcve.org/view.php?id=CVE-2020-0977
15 Apr 2020 — A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2020-0972, CVE-2020-0975, CVE-2020-0976. Hay una vulnerabilidad de "spoofing" cuando Microsoft SharePoint Server no sanea apropiadamente una petición web especialmente diseñada para un servidor SharePoint afectado, también se conoce como "Microsoft SharePoint Spoofing Vul... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0977 •
CVSS: 9.3EPSS: 0%CPEs: 4EXPL: 0CVE-2020-0973
https://notcve.org/view.php?id=CVE-2020-0973
15 Apr 2020 — A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-0923, CVE-2020-0924, CVE-2020-0925, CVE-2020-0926, CVE-2020-0927, CVE-2020-0930, CVE-2020-0933, CVE-2020-0954, CVE-2020-0978. Hay una vulnerabilidad de tipo cross-site-scripting (XSS) cuando Microsoft SharePoint Server no sanea apropiadamente una ... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0973 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 4EXPL: 0CVE-2020-0975
https://notcve.org/view.php?id=CVE-2020-0975
15 Apr 2020 — A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2020-0972, CVE-2020-0976, CVE-2020-0977. Hay una vulnerabilidad de "spoofing" cuando Microsoft SharePoint Server no sanea apropiadamente una petición web especialmente diseñada para un servidor SharePoint afectado, también se conoce como "Microsoft SharePoint Spoofing Vul... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0975 •
CVSS: 8.8EPSS: 28%CPEs: 2EXPL: 0CVE-2020-0974
https://notcve.org/view.php?id=CVE-2020-0974
15 Apr 2020 — A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0920, CVE-2020-0929, CVE-2020-0931, CVE-2020-0932, CVE-2020-0971. Hay una vulnerabilidad de ejecución de código remota en Microsoft SharePoint cuando el software da un fallo al comprobar la marcación del origen de un paquete de aplicaciones, también se conoce como ... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0974 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 5.4EPSS: 0%CPEs: 4EXPL: 0CVE-2020-0972
https://notcve.org/view.php?id=CVE-2020-0972
15 Apr 2020 — A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2020-0975, CVE-2020-0976, CVE-2020-0977. Hay una vulnerabilidad de "spoofing" cuando Microsoft SharePoint Server no sanea apropiadamente una petición web especialmente diseñada para un servidor SharePoint afectado, también se conoce como "Microsoft SharePoint Spoofing Vul... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0972 •
CVSS: 8.8EPSS: 31%CPEs: 4EXPL: 0CVE-2020-0971 – Microsoft SharePoint DataFormWebPart Server-Side Include Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-0971
15 Apr 2020 — A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0920, CVE-2020-0929, CVE-2020-0931, CVE-2020-0932, CVE-2020-0974. Hay una vulnerabilidad de ejecución de código remota en Microsoft SharePoint cuando el software da un fallo al comprobar la marcación del origen de un paquete de aplicaciones, también se conoce como ... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0971 • CWE-434: Unrestricted Upload of File with Dangerous Type •