Vulnerabilities > Microsoft > Sharepoint Enterprise Server > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-14 | CVE-2023-38177 | Unspecified vulnerability in Microsoft Sharepoint Enterprise Server and Sharepoint Server Microsoft SharePoint Server Remote Code Execution Vulnerability low complexity microsoft | 6.8 |
| 2021-12-15 | CVE-2021-42320 | Authentication Bypass by Spoofing vulnerability in Microsoft Sharepoint Enterprise Server and Sharepoint Server Microsoft SharePoint Server Spoofing Vulnerability | 5.7 |
| 2021-12-15 | CVE-2021-43242 | Unspecified vulnerability in Microsoft products Microsoft SharePoint Server Spoofing Vulnerability | 5.7 |
| 2020-08-17 | CVE-2020-1580 | Cross-site Scripting vulnerability in Microsoft products A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. | 5.4 |
| 2020-08-17 | CVE-2020-1503 | Unspecified vulnerability in Microsoft products An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. | 5.5 |
| 2020-08-17 | CVE-2020-1501 | Unspecified vulnerability in Microsoft products A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. | 5.4 |
| 2020-08-17 | CVE-2020-1500 | Unspecified vulnerability in Microsoft Sharepoint Enterprise Server and Sharepoint Server A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. | 5.4 |
| 2020-08-17 | CVE-2020-1499 | Unspecified vulnerability in Microsoft products A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. | 5.4 |
| 2020-07-14 | CVE-2020-1456 | Cross-site Scripting vulnerability in Microsoft Sharepoint Enterprise Server and Sharepoint Server A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. | 5.4 |
| 2020-07-14 | CVE-2020-1454 | Cross-site Scripting vulnerability in Microsoft Sharepoint Enterprise Server and Sharepoint Server This vulnerability is caused when SharePoint Server does not properly sanitize a specially crafted request to an affected SharePoint server.An authenticated attacker could exploit this vulnerability by sending a specially crafted request to an affected SharePoint server, aka 'Microsoft SharePoint Reflective XSS Vulnerability'. | 5.4 |