Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total7

Critical0

High5

Medium2

Search Severity Year Type Sort Order

Reset

Showing 1-7 of 7 records

Threat Entry Updated 2026-01-14

CVE-2026-20963 - Microsoft SharePoint Server 2019 Plugin

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

PLUGIN Microsoft SharePoint Server 2019

CVE-2026-20963

HIGH CVSS 8.8 2026-01-13

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2026-01-14

CVE-2026-20958 - Microsoft SharePoint Server 2019 Plugin

Server-side request forgery (ssrf) in Microsoft Office SharePoint allows an authorized attacker to disclose information over a network.

PLUGIN Microsoft SharePoint Server 2019

CVE-2026-20958

MEDIUM CVSS 5.4 2026-01-13

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2026-01-14

CVE-2026-20959 - Microsoft SharePoint Server 2019 Plugin

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.

PLUGIN Microsoft SharePoint Server 2019

CVE-2026-20959

MEDIUM CVSS 4.6 2026-01-13

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2026-01-16

CVE-2026-20947 - Microsoft SharePoint Server 2019 Plugin

Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

PLUGIN Microsoft SharePoint Server 2019

CVE-2026-20947

HIGH CVSS 8.8 2026-01-13

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2026-01-14

CVE-2026-20951 - Microsoft SharePoint Server 2019 Plugin

Improper input validation in Microsoft Office SharePoint allows an unauthorized attacker to execute code locally.

PLUGIN Microsoft SharePoint Server 2019

CVE-2026-20951

HIGH CVSS 7.8 2026-01-13

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2026-01-16

CVE-2026-20948 - Microsoft SharePoint Server 2019 Plugin

Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.

PLUGIN Microsoft SharePoint Server 2019

CVE-2026-20948

HIGH CVSS 7.8 2026-01-13

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2026-01-16

CVE-2026-20943 - Microsoft SharePoint Server 2019 Plugin

Untrusted search path in Microsoft Office allows an unauthorized attacker to execute code locally.

PLUGIN Microsoft SharePoint Server 2019

CVE-2026-20943

HIGH CVSS 7.0 2026-01-13

Risk Score

Open Full Technical Breakdown

Blog

"Prevention is cheaper than a breach"

Threat Database

CVE-2026-20963 - Microsoft SharePoint Server 2019 Plugin

CVE-2026-20958 - Microsoft SharePoint Server 2019 Plugin

CVE-2026-20959 - Microsoft SharePoint Server 2019 Plugin

CVE-2026-20947 - Microsoft SharePoint Server 2019 Plugin

CVE-2026-20951 - Microsoft SharePoint Server 2019 Plugin

CVE-2026-20948 - Microsoft SharePoint Server 2019 Plugin

CVE-2026-20943 - Microsoft SharePoint Server 2019 Plugin

Company Links

Contact Us