CVE-2026-55135 affects Microsoft SharePoint Server 2016, SharePoint Server 2019, and SharePoint Server Subscription Edition, allowing an authenticated attacker to inject script content that can be used to spoof information presented to another user. Microsoft fixed the flaw in its July 14, 2026...