Description
Microsoft SharePoint Server 2013 Gold and SP1 and SharePoint Foundation 2013 Gold and SP1 allow remote authenticated users to gain privileges via a Trojan horse app that executes a custom action in the context of the SharePoint extensibility model, aka "SharePoint Page Content Vulnerability."
Remediation
References
Related Vulnerabilities
Atlassian Jira Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2020-36231)
Magento CVE-2019-7915 Vulnerability (CVE-2019-7915)
Oracle JRE CVE-2019-2933 Vulnerability (CVE-2019-2933)
Lighttpd Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-1111)
Plone CMS Resource Management Errors Vulnerability (CVE-2013-4188)