Description

A remote code execution vulnerability exists in Microsoft SharePoint Server when it fails to properly identify and filter unsafe ASP.Net web controls, aka 'Microsoft SharePoint Server Remote Code Execution Vulnerability'.

Remediation

References

CVE-2020-1181

Related Vulnerabilities

WordPress Plugin WP Elegant Testimonial Cross-Site Scripting (1.1.6)

WordPress Plugin FPW Category Thumbnails Multiple Unspecified Vulnerabilities (1.6.7)

Apache Traffic Server Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2021-32565)

Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-35131)

WordPress Plugin 3D Cover Carousel Cross-Site Scripting (1.0)

Severity

High

Classification

CVE-2020-1181 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities