CVE-2018-0910

Name of the Vulnerable Software and Affected Versions: Microsoft SharePoint Server (affected versions not specified)

Description: An issue exists where Microsoft SharePoint Server fails to properly sanitize a specially crafted web request, allowing for potential elevation of privilege. This could enable an attacker to perform cross-site scripting attacks, read unauthorized content, use the victim's identity to take actions on the SharePoint site, and inject malicious content into the user's browser.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.