Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2021-24066)

Description

Microsoft SharePoint Remote Code Execution Vulnerability

Remediation

References

Related Vulnerabilities

Restlet Framework Improper Restriction of XML External Entity Reference Vulnerability (CVE-2017-14868)

WordPress Plugin Fuctweb CapCC 'plugins.php' SQL Injection (1.0)

PHP 4.3.0 file disclosure and possible code execution

Moodle Improper Check for Dropped Privileges Vulnerability (CVE-2019-14879)

WordPress Plugin Activity Log Multiple Cross-Site Scripting Vulnerabilities (2.4.0)

Severity

Medium

Classification

CVE-2021-24066 CWE-502 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities