Unrated severityNVD Advisory· Published Apr 15, 2020· Updated Feb 28, 2025
CVE-2020-0954
CVE-2020-0954
Description
A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-0923, CVE-2020-0924, CVE-2020-0925, CVE-2020-0926, CVE-2020-0927, CVE-2020-0930, CVE-2020-0933, CVE-2020-0973, CVE-2020-0978.
Affected products
4(expand)+ 2 more
- (no CPE)
- (no CPE)range: 2016
- (no CPE)range: 2019
- Range: 2013 Service Pack 1 (64-bit edition)
Patches
Vulnerability mechanics
References
1- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0954mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.