Main
Vulnerability Database
Exploits
ID:12625 - Exploit for Input validation error in Microsoft SharePoint Server - CVE-2026-32201
ID:12625 - Exploit for Input validation error in Microsoft SharePoint Server - CVE-2026-32201
Published: April 23, 2026
Vulnerability identifier: #VU126005
Vulnerability risk: High
CVE-ID: CVE-2026-32201
CWE-ID: CWE-20
Exploitation vector: Remote access
Vulnerable software:
Microsoft SharePoint Server
Microsoft SharePoint Server
Link to public exploit:
Vulnerability description
The vulnerability allows a remote attacker to perform a spoofing attack.
The vulnerability exists due to insufficient validation of user-supplied input. A remote attacker can perform spoofing attack.
Note, the vulnerability is being actively exploited in the wild.
Remediation
Install updates from vendor's website.