CVE-2020-1501

Name of the Vulnerable Software and Affected Versions: Microsoft SharePoint Server (affected versions not specified)

Description: A spoofing issue exists due to insufficient input validation in Microsoft SharePoint Server. This could allow a remote attacker to perform spoofing attacks by sending a specially crafted request to the vulnerable SharePoint server. The attacker could then perform cross-site scripting attacks, run scripts in the context of the current user, read unauthorized content, use the victim's identity to take actions on the SharePoint site, and inject malicious content into the user's browser.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.