Description

A remote code execution vulnerability exists in Microsoft SharePoint where APIs aren't properly protected from unsafe data input, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1257, CVE-2019-1295.

Remediation

References

CVE-2019-1296

Related Vulnerabilities

Jenkins CVE-2014-2060 Vulnerability (CVE-2014-2060)

TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-3660)

phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-4408)

WordPress Plugin Simple visitor stat Cross-Site Scripting (1.0)

WordPress Plugin Yet Another bol.com Cross-Site Scripting (1.4)

Severity

High

Classification

CVE-2019-1296 CWE-20 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities