Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Microsoft SharePoint Server 2013, in certain configurations involving legacy My Sites, does not properly establish default access controls for a SharePoint list, which allows remote authenticated users to bypass intended restrictions on reading list items via a direct request for a list's location, aka "Incorrect Access Rights Information Disclosure Vulnerability."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft SharePoint Server 不正确的访问权限信息泄露漏洞
Vulnerability Description
Microsoft SharePoint Server是美国微软(Microsoft)公司的一套企业业务协作平台。该平台用于对业务信息进行整合,并能够共享工作、与他人协同工作、组织项目和工作组、搜索人员和信息。 Microsoft SharePoint Server 2013,在某些配置中包括legacy My Sites中存在漏洞。如果攻击者确定特定SharePoint列表的地址或位置,并且获得对维护该列表的SharePoint网站的访问权限,则此漏洞可能允许信息泄露。攻击者需要能够满足SharePoi
CVSS Information
N/A
Vulnerability Type
N/A