Reachable SharePoint interface

Description

Microsoft SharePoint is a web application platform developed by Microsoft. Because of improper configuration an Anonymous user has access to the SharePoint interface page.

Remediation

Restrict Anonymous Access to this page.

References

Fedon_Athcon_June11.pdf

SharePoint

Related Vulnerabilities

WordPress REST API User Enumeration

JavaMelody publicly accessible

WordPress Plugin LearnDash LMS Multiple Information Disclosure Vulnerabilities (4.10.2)

WordPress Plugin Simple Image Manipulator Arbitrary File Download (1.0)

Unrestricted access to ImageResizer Diagnotics plugin

Severity

High

Classification

CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N