Microsoft Sharepoint Foundation vulnerabilities
226 known vulnerabilities affecting microsoft/sharepoint_foundation.
Total CVEs
226
CISA KEV
1
actively exploited
Public exploits
10
Exploited in wild
3
Severity breakdown
CRITICAL11HIGH89MEDIUM116LOW10
Vulnerabilities
Page 12 of 12
CVE-2011-1893MEDIUMCVSS 4.3v20102011-09-15
CVE-2011-1893 [MEDIUM] CWE-79 CVE-2011-1893: Cross-site scripting (XSS) vulnerability in Microsoft Office SharePoint Server 2010, Windows SharePo
Cross-site scripting (XSS) vulnerability in Microsoft Office SharePoint Server 2010, Windows SharePoint Services 2.0 and 3.0 SP2, and SharePoint Foundation 2010 allows remote attackers to inject arbitrary web script or HTML via the URI, aka "SharePoint XSS Vulnerability."
nvd
CVE-2011-0653MEDIUMCVSS 4.3v20102011-09-15
CVE-2011-0653 [MEDIUM] CWE-79 CVE-2011-0653: Cross-site scripting (XSS) vulnerability in Microsoft Office SharePoint Server 2010 Gold and SP1, an
Cross-site scripting (XSS) vulnerability in Microsoft Office SharePoint Server 2010 Gold and SP1, and SharePoint Foundation 2010, allows remote attackers to inject arbitrary web script or HTML via the URI, aka "XSS in SharePoint Calendar Vulnerability."
nvd
CVE-2011-1892MEDIUMCVSS 4.0PoCv20102011-09-15
CVE-2011-1892 [MEDIUM] CWE-200 CVE-2011-1892: Microsoft Office Groove 2007 SP2, SharePoint Workspace 2010 Gold and SP1, Office Forms Server 2007 S
Microsoft Office Groove 2007 SP2, SharePoint Workspace 2010 Gold and SP1, Office Forms Server 2007 SP2, Office SharePoint Server 2007 SP2, Office SharePoint Server 2010 Gold and SP1, Office Groove Data Bridge Server 2007 SP2, Office Groove Management Server 2007 SP2, Groove Server 2010 Gold and SP1, Windows SharePoint Services 3.0 SP2, SharePoint Foun
nvd
CVE-2011-1890MEDIUMCVSS 4.3v20102011-09-15
CVE-2011-1890 [MEDIUM] CWE-79 CVE-2011-1890: Cross-site scripting (XSS) vulnerability in EditForm.aspx in Microsoft Office SharePoint Server 2010
Cross-site scripting (XSS) vulnerability in EditForm.aspx in Microsoft Office SharePoint Server 2010 and SharePoint Foundation 2010 allows remote attackers to inject arbitrary web script or HTML via a post, aka "Editform Script Injection Vulnerability."
nvd
CVE-2011-1891MEDIUMCVSS 4.3v20102011-09-15
CVE-2011-1891 [MEDIUM] CWE-79 CVE-2011-1891: Cross-site scripting (XSS) vulnerability in Microsoft Windows SharePoint Services 3.0 SP2, and Share
Cross-site scripting (XSS) vulnerability in Microsoft Windows SharePoint Services 3.0 SP2, and SharePoint Foundation 2010 Gold and SP1, allows remote attackers to inject arbitrary web script or HTML via unspecified parameters in a request to a script, aka "Contact Details Reflected XSS Vulnerability."
nvd
CVE-2010-3324MEDIUMCVSS 4.3PoCv20102010-09-17
CVE-2010-3324 [MEDIUM] CVE-2010-3324: The toStaticHTML function in Microsoft Internet Explorer 8, and the SafeHTML function in Microsoft W
The toStaticHTML function in Microsoft Internet Explorer 8, and the SafeHTML function in Microsoft Windows SharePoint Services 3.0 SP2, SharePoint Foundation 2010, Office SharePoint Server 2007 SP2, Groove Server 2010, and Office Web Apps, allows remote attackers to bypass the cross-site scripting (XSS) protection mechanism and conduct XSS attacks via a craft
nvd
← Previous12 / 12