Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

SharePoint Improper Input Validation Vulnerability (CVE-2019-0604)

Description

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0594.

Remediation

References

Related Vulnerabilities

WordPress Plugin Donate by BestWebSoft Cross-Site Scripting (2.0.1)

Internet Information Services Other Vulnerability (CVE-2000-0630)

WordPress Plugin wpDataTables-WordPress Data Table, Dynamic Tables & Table Charts Arbitrary File Upload (1.5.3)

WordPress Plugin Comment Link Remove and Other Comment Tools Cross-Site Request Forgery (2.1.4)

WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-4566)

Severity

Critical

Classification

CVE-2019-0604 CWE-20 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities