Medium severity6.1NVD Advisory· Published Mar 17, 2017· Updated Jun 17, 2026
CVE-2017-0107
CVE-2017-0107
Description
Microsoft SharePoint Server fails to sanitize crafted web requests, allowing remote attackers to run cross-script in local security context, aka "Microsoft SharePoint XSS Vulnerability."
Affected products
3- cpe:2.3:a:microsoft:sharepoint_foundation:2013:sp1:*:*:*:*:*:*
- Microsoft Corporation/SharePointv5Range: SharePoint Server
Patches
Vulnerability mechanics
References
3- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0107nvdPatchVendor Advisory
- www.securityfocus.com/bid/96748nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1038019nvd
News mentions
0No linked articles in our index yet.