Improper control of generation of code ('code injection') in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.Referenceshttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49704
