Description
A spoofing vulnerability exists in Microsoft SharePoint when it improperly handles requests to authorize applications, resulting in cross-site request forgery (CSRF).To exploit this vulnerability, an attacker would need to create a page specifically designed to cause a cross-site request, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2019-1259.
Affected products
- Microsoft / Microsoft SharePoint Enterprise Server2016 – 2016
- Microsoft / Microsoft SharePoint Foundation2013 Service Pack 1 – 2013 Service Pack 1
- Microsoft / Microsoft SharePoint Server2019 – 2019