WEB APPLICATION VULNERABILITIES Standard & Premium

SharePoint Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-2816)

Description

Microsoft SharePoint Server 2013 Gold and SP1 and SharePoint Foundation 2013 Gold and SP1 allow remote authenticated users to gain privileges via a Trojan horse app that executes a custom action in the context of the SharePoint extensibility model, aka "SharePoint Page Content Vulnerability."

Remediation

References

Related Vulnerabilities

Oracle JRE CVE-2024-20952 Vulnerability (CVE-2024-20952)

MySQL CVE-2018-2773 Vulnerability (CVE-2018-2773)

WebLogic CVE-2024-21006 Vulnerability (CVE-2024-21006)

WordPress Plugin 3D Cover Carousel Cross-Site Scripting (1.0)

osCommerce Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2018-18573)

Severity

Critical

Classification

CVE-2014-2816 CWE-264

Tags

Missing Update Known Vulnerabilities