New Search

SharePoint XSS Vulnerability

oval:org.mitre.oval:def:12676

Cross-site scripting (XSS) vulnerability in Microsoft Office SharePoint Server 2010 Windows SharePoint Services 2.0 and 3.0 SP2 and SharePoint Foundation 2010 allows remote attackers to inject arbitrary web script or HTML via the URI aka "SharePoint XSS Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 7
  • Microsoft Windows Vista
  • Microsoft Windows Server 2003
  • Microsoft Windows XP
  • Microsoft Windows Server 2008
  • Microsoft Windows Server 2008 R2
  • Microsoft Windows 2000
Class:
vulnerability
Reference(s):
  • CVE-2011-1893
Product(s):
  • Microsoft Windows SharePoint Services 3.0
  • Microsoft SharePoint Server 2010
  • Microsoft SharePoint Foundation 2010
  • Microsoft Windows SharePoint Services 2.0