Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-hcqx-rg27-pcqw

Опубликовано: 24 мая 2022
Источник: github
Github: Не прошло ревью

Описание

A spoofing vulnerability exists in Microsoft SharePoint when it improperly handles requests to authorize applications, resulting in cross-site request forgery (CSRF).To exploit this vulnerability, an attacker would need to create a page specifically designed to cause a cross-site request, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2019-1261.

A spoofing vulnerability exists in Microsoft SharePoint when it improperly handles requests to authorize applications, resulting in cross-site request forgery (CSRF).To exploit this vulnerability, an attacker would need to create a page specifically designed to cause a cross-site request, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2019-1261.

Ссылки

EPSS

Процентиль: 89%
0.05041
Низкий

CVE ID

CVE-2019-1259

Связанные уязвимости

nvd логотип

CVE-2019-1259

CVSS3: 8.8
nvd
около 6 лет назад

A spoofing vulnerability exists in Microsoft SharePoint when it improperly handles requests to authorize applications, resulting in cross-site request forgery (CSRF).To exploit this vulnerability, an attacker would need to create a page specifically designed to cause a cross-site request, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2019-1261.

msrc логотип

CVE-2019-1259

msrc
около 6 лет назад

Microsoft SharePoint Spoofing Vulnerability

fstec логотип

BDU:2019-03173

CVSS3: 6.1
fstec
около 6 лет назад

Уязвимость программного обеспечения для электронного документооборота Microsoft SharePoint Foundation, связанная с ошибками при обработке запросов на авторизацию приложений, позволяющая нарушителю осуществить межсайтовую подделку запросов

EPSS

Процентиль: 89%
0.05041
Низкий

CVE ID

CVE-2019-1259