Vulnerability Database
296,746
Total vulnerabilities in the database
CVE-2013-3895
Microsoft SharePoint Server 2007 SP3 and 2010 SP1 and SP2 allows remote attackers to conduct clickjacking attacks via a crafted web page, aka "Parameter Injection Vulnerability."
| Software | From | Fixed in |
|---|---|---|
| microsoft / office_web_apps | 2010 | 2010.x |
| microsoft / sharepoint_server | 2007-sp3 | 2007-sp3.x |
| microsoft / sharepoint_server | 2013 | 2013.x |
| microsoft / sharepoint_server | 2010-sp2 | 2010-sp2.x |
| microsoft / sharepoint_server | 2010-sp1 | 2010-sp1.x |
- http://blogs.technet.com/b/srd/archive/2013/10/08/assessing-risk-for-the-october-2013-security-updates.aspx
- http://www.us-cert.gov/ncas/alerts/TA13-288A
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-084
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18991
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime