Description
Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.
Related CPE's
a
microsoft
sharepoint_server
3
CVSS impact metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
4.6 · Medium
Information
Source identifier
Vulnerability status
Analyzed
Published
2026-01-13T18:16:23.937Z
26 hours agoLast modified
2026-01-14T19:19:39.877Z
1 hour ago