Medium severity5.4NVD Advisory· Published Sep 13, 2018· Updated Jun 17, 2026
CVE-2018-8426
CVE-2018-8426
Description
A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft Office SharePoint XSS Vulnerability." This affects Microsoft SharePoint Server, Microsoft SharePoint.
Affected products
3(expand)+ 1 more
- (no CPE)
- (no CPE)range: 2010 Service Pack 2
- Range: Enterprise Server 2013 Service Pack 1
Patches
Vulnerability mechanics
References
3- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8426nvdPatchVendor Advisory
- www.securityfocus.com/bid/105208nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1041640nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.