CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 0CVE-2020-1289
https://notcve.org/view.php?id=CVE-2020-1289
09 Jun 2020 — A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2020-1148. Se presenta una vulnerabilidad de suplantación de identidad cuando Microsoft SharePoint Server no sanea apropiadamente una petición web especialmente diseñada en un servidor SharePoint afectado, también se conoce como "Microsoft SharePoint Spoofing Vulnerabilit... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1289 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.8EPSS: 50%CPEs: 4EXPL: 0CVE-2020-1181 – Microsoft SharePoint Server Web Part Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-1181
09 Jun 2020 — A remote code execution vulnerability exists in Microsoft SharePoint Server when it fails to properly identify and filter unsafe ASP.Net web controls, aka 'Microsoft SharePoint Server Remote Code Execution Vulnerability'. Se presenta una vulnerabilidad de ejecución de código remota en Microsoft SharePoint Server cuando no puede identificar y filtrar apropiadamente los controles web ASP.Net no seguros, también se conoce como "Microsoft SharePoint Server Remote Code Execution Vulnerability" This vulnerability... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1181 •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0CVE-2020-1100
https://notcve.org/view.php?id=CVE-2020-1100
21 May 2020 — A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-1099, CVE-2020-1101, CVE-2020-1106. Existe una vulnerabilidad de tipo cross-site-scripting (XSS) cuando Microsoft SharePoint Server no sanea apropiadamente una petición web especialmente diseñada para un servidor SharePoint afectado, también se co... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1100 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 4EXPL: 0CVE-2020-0975
https://notcve.org/view.php?id=CVE-2020-0975
15 Apr 2020 — A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2020-0972, CVE-2020-0976, CVE-2020-0977. Hay una vulnerabilidad de "spoofing" cuando Microsoft SharePoint Server no sanea apropiadamente una petición web especialmente diseñada para un servidor SharePoint afectado, también se conoce como "Microsoft SharePoint Spoofing Vul... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0975 •
CVSS: 8.8EPSS: 32%CPEs: 4EXPL: 0CVE-2020-0971 – Microsoft SharePoint DataFormWebPart Server-Side Include Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-0971
15 Apr 2020 — A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0920, CVE-2020-0929, CVE-2020-0931, CVE-2020-0932, CVE-2020-0974. Hay una vulnerabilidad de ejecución de código remota en Microsoft SharePoint cuando el software da un fallo al comprobar la marcación del origen de un paquete de aplicaciones, también se conoce como ... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0971 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 5.4EPSS: 0%CPEs: 4EXPL: 0CVE-2020-0972
https://notcve.org/view.php?id=CVE-2020-0972
15 Apr 2020 — A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2020-0975, CVE-2020-0976, CVE-2020-0977. Hay una vulnerabilidad de "spoofing" cuando Microsoft SharePoint Server no sanea apropiadamente una petición web especialmente diseñada para un servidor SharePoint afectado, también se conoce como "Microsoft SharePoint Spoofing Vul... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0972 •
CVSS: 8.8EPSS: 29%CPEs: 4EXPL: 0CVE-2020-0929
https://notcve.org/view.php?id=CVE-2020-0929
15 Apr 2020 — A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0920, CVE-2020-0931, CVE-2020-0932, CVE-2020-0971, CVE-2020-0974. Hay una vulnerabilidad de ejecución de código remota en Microsoft SharePoint cuando el software falla al comprobar la marcación del origen de un paquete de aplicaciones, también se conoce como "Micro... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0929 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 9.3EPSS: 0%CPEs: 4EXPL: 0CVE-2020-0925
https://notcve.org/view.php?id=CVE-2020-0925
15 Apr 2020 — A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-0923, CVE-2020-0924, CVE-2020-0926, CVE-2020-0927, CVE-2020-0930, CVE-2020-0933, CVE-2020-0954, CVE-2020-0973, CVE-2020-0978. Hay una vulnerabilidad de tipo cross-site-scripting (XSS) cuando Microsoft SharePoint Server no sanea apropiadamente una ... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0925 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.8EPSS: 29%CPEs: 4EXPL: 0CVE-2020-0920
https://notcve.org/view.php?id=CVE-2020-0920
15 Apr 2020 — A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0929, CVE-2020-0931, CVE-2020-0932, CVE-2020-0971, CVE-2020-0974. Hay una vulnerabilidad de ejecución de código remota en Microsoft SharePoint cuando el software falla al comprobar la marcación del origen de un paquete de aplicaciones, también se conoce como "Micro... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0920 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 8.8EPSS: 29%CPEs: 5EXPL: 0CVE-2020-0931 – Microsoft SharePoint Scorecards Deserialization of Untrusted Data Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-0931
15 Apr 2020 — A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0920, CVE-2020-0929, CVE-2020-0932, CVE-2020-0971, CVE-2020-0974. Hay una vulnerabilidad de ejecución de código remota en Microsoft SharePoint cuando el software da un fallo al comprobar la marcación del origen de un paquete de aplicaciones, también se conoce como ... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0931 • CWE-434: Unrestricted Upload of File with Dangerous Type •