Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
SharePoint Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2015-1633 - Vulnerability Database
SharePoint

SharePoint Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2015-1633

Low
Reference: CVE-2015-1633
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2015-1633
Title: SharePoint Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Overview:

Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Foundation 2010 SP2 SharePoint Server 2010 SP2 SharePoint Foundation 2013 Gold and SP1 and SharePoint Server 2013 Gold and SP1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted request aka quotMicrosoft SharePoint XSS Vulnerability.quot