Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

SharePoint Untrusted Search Path Vulnerability (CVE-2026-20943)

Description

Untrusted search path in Microsoft Office allows an unauthorized attacker to execute code locally.

Remediation

References

Related Vulnerabilities

WebLogic CVE-2019-2889 Vulnerability (CVE-2019-2889)

WordPress Plugin WordPress Shortcodes-Shortcodes Ultimate Directory Traversal (4.9.9)

WordPress Plugin WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) Security Bypass (7.5.12)

WordPress Plugin Yoast SEO Cross-Site Scripting (21.0)

Oracle Application Server CVE-2008-7235 Vulnerability (CVE-2008-7235)

Severity

High

Classification

CVE-2026-20943 CWE-426 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities