CVE-2015-6037

EPSS 10.21% · P93 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2015-6037

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Cross-site scripting (XSS) vulnerability in Microsoft Excel Services on SharePoint Server 2010 SP2 and 2013 SP1, Office Web Apps 2010 SP2, Excel Web App 2010 SP2, Office Web Apps Server 2013 SP1, and SharePoint Foundation 2013 SP1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, aka "Microsoft Office Web Apps XSS Spoofing Vulnerability."

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Microsoft Office Web Apps 跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Microsoft Office Web Apps Server是美国微软（Microsoft）公司的一款为Office文件提供基于浏览器的文件查看和编辑功能的Office Server产品。 Microsoft Office Web Apps Server中存在跨站脚本漏洞，该漏洞源于程序没有正确地清理经特殊设计的请求。经过身份验证的远程攻击者可通过向受影响的Office Web Apps Server发送经特殊设计的请求，利用该漏洞在受影响的系统上执行跨站脚本攻击，并在当前用户的安全上下文中运行脚本。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2015-6037

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2015-6037

Please Login to view more intelligence information

http://www.securitytracker.com/id/1033804vdb-entryx_refsource_SECTRACK
http://www.securitytracker.com/id/1033803vdb-entryx_refsource_SECTRACK
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-110vendor-advisoryx_refsource_MS
https://nvd.nist.gov/vuln/detail/CVE-2015-6037

Same Patch Batch · n/a · 2015-10-14 · 109 CVEs total

CVE-2015-7643		多款Adobe产品释放后重用漏洞
CVE-2015-2482		Microsoft VBScript和JScript引擎内存损坏漏洞
CVE-2015-7373		Revive Adserver 跨站脚本漏洞
CVE-2015-7372		Revive Adserver 目录遍历漏洞
CVE-2015-7371		Revive Adserver 安全漏洞
CVE-2015-7370		Revive Adserver VideoAds Open Flash Chart 跨站脚本漏洞
CVE-2015-7369		Revive Adserver Flash cross-domain策略安全漏洞
CVE-2015-7368		Revive Adserver 安全漏洞
CVE-2015-7367		Revive Adserver 安全漏洞
CVE-2015-7366		Revive Adserver 跨站请求伪造漏洞
CVE-2015-7365		Revive Adserver 跨站脚本漏洞
CVE-2015-7364		Revive Adserver HTML_Quickform库跨站请求伪造漏洞
CVE-2015-7829		多款Adobe产品安全漏洞
CVE-2015-7644		多款Adobe产品释放后重用漏洞
CVE-2015-7625		多款Adobe产品缓冲区溢出漏洞
CVE-2015-7628		多款Adobe产品安全漏洞
CVE-2015-7627		多款Adobe产品缓冲区溢出漏洞
CVE-2015-7626		多款Adobe产品缓冲区溢出漏洞
CVE-2015-7629		多款Adobe产品释放后重用漏洞
CVE-2015-7624		多款Adobe产品安全漏洞

Showing top 20 of 109 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2015-6037

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2015-6037

I. Basic Information for CVE-2015-6037

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2015-6037

III. Intelligence Information for CVE-2015-6037

Same Patch Batch · n/a · 2015-10-14 · 109 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2015-6037

Leave a comment