Jun 2026: Microsoft SharePoint Server Spoofing Vulnerability
CVE-2026-47641 Published on June 9, 2026
Microsoft SharePoint Server Spoofing Vulnerability
Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.
Weakness Type
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
Products Associated with CVE-2026-47641
Want to know whenever a new CVE is published for Microsoft products? stack.watch will email you.
Affected Versions
Microsoft SharePoint Enterprise Server 2016:- Version 16.0.0 and below 16.0.5556.1005 is affected.
- Version 16.0.0 and below 16.0.10417.20153 is affected.
- Version 16.0.0 and below 16.0.19725.20384 is affected.