WEB APPLICATION VULNERABILITIES Standard & Premium

SharePoint Improper Input Validation Vulnerability (CVE-2019-1257)

Description

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1295, CVE-2019-1296.

Remediation

References

Related Vulnerabilities

WordPress 3.8.x Multiple Vulnerabilities (3.8 - 3.8.39)

MyBB Server-Side Request Forgery (SSRF) Vulnerability (CVE-2016-9417)

Chamilo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-34187)

WordPress Plugin Share Buttons by AddThis Cross-Site Scripting (4.0.7)

phpMyFAQ Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2006-6912)

Severity

High

Classification

CVE-2019-1257 CWE-20 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities