Microsoft SharePoint Server 2013 SP1 and SharePoint Foundation 2013 SP1 allow remote authenticated users to bypass intended Access Control Policy restrictions and conduct cross-site scripting (XSS) attacks by modifying a webpart, aka "Microsoft SharePoint Security Feature Bypass," a different vulnerability than CVE-2016-0011.
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: microsoft

Published: 2016-01-13T02:00:00

Updated: 2018-10-12T19:57:01

Reserved: 2015-08-14T00:00:00


Link: CVE-2015-6117

JSON object: View

cve-icon NVD Information

Status : Modified

Published: 2016-01-13T05:59:00.120

Modified: 2018-10-12T22:10:25.907


Link: CVE-2015-6117

JSON object: View

cve-icon Redhat Information

No data.

CWE