Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

SharePoint Improper Input Validation Vulnerability (CVE-2026-20951)

Description

Improper input validation in Microsoft Office SharePoint allows an unauthorized attacker to execute code locally.

Remediation

References

Related Vulnerabilities

Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-8917)

PHP Other Vulnerability (CVE-2007-1887)

Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-14242)

PHP Other Vulnerability (CVE-2007-1825)

WordPress Plugin Custom Field Suite Security Bypass (2.4)

Severity

High

Classification

CVE-2026-20951 CWE-20 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities