CVE-2009-0102 — CVSS 9.3 (critical): Microsoft Project 2000 SR1 and 2002 SP1, and Office Project 2003 SP3, does not properly handle memory allocation for Project files, which…
CVE-2014-0251 — CVSS 9.0 (critical): Microsoft Windows SharePoint Services 3.0 SP3; SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013 Gold and SP1; SharePoint Foundation…
CVE-2018-0915 — CVSS 8.8 (high): Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to due how…
CVE-2018-0914 — CVSS 8.8 (high): Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to due how…
CVE-2018-0916 — CVSS 8.8 (high): Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to due how…
CVE-2017-11876 — CVSS 8.8 (high): Microsoft Project Server and Microsoft SharePoint Enterprise Server 2016 allow an attacker to use cross-site forgery to read content that…
CVE-2018-0944 — CVSS 8.8 (high): Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allows an elevation of privilege vulnerability to due how…
CVE-2018-0909 — CVSS 8.8 (high): Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to due how…
CVE-2018-0910 — CVSS 8.8 (high): Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to due how…
CVE-2018-0911 — CVSS 8.8 (high): Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to due how…
CVE-2018-0912 — CVSS 8.8 (high): Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to due how…
CVE-2018-0913 — CVSS 8.8 (high): Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to due how…
CVE-2018-8284 — CVSS 8.1 (high): A remote code execution vulnerability exists when the Microsoft .NET Framework fails to validate input properly, aka ".NET Framework Remote…
CVE-2017-0281 — CVSS 7.8 (high): Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1, Office 2016, Office Online Server 2016, Office Web Apps 2010 SP2,Office Web…
CVE-2006-6617 — CVSS 6.5 (medium): projectserver/logon/pdsrequest.asp in Microsoft Project Server 2003 allows remote authenticated users to obtain the MSProjectUser password…
CVE-2017-8551 — CVSS 6.1 (medium): An elevation of privilege vulnerability exists when Microsoft SharePoint software fails to properly sanitize a specially crafted requests…
CVE-2018-8156 — CVSS 5.4 (medium): An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request…
CVE-2018-8254 — CVSS 5.4 (medium): An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request…
CVE-2019-1031 — CVSS 5.4 (medium): A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web…
CVE-2019-1033 — CVSS 5.4 (medium): A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web…
CVE-2019-1036 — CVSS 5.4 (medium): A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web…
CVE-2020-0954 — CVSS 5.4 (medium): A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web…
CVE-2015-1640 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Microsoft Project Server 2010 SP2 and 2013 SP1 allows remote attackers to inject arbitrary web…