Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
SharePoint Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2015-1636 - Vulnerability Database
SharePoint

SharePoint Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2015-1636

Low
Reference: CVE-2015-1636
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2015-1636
Title: SharePoint Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Overview:

Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Foundation 2013 Gold and SP1 and SharePoint Server 2013 Gold and SP1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted request aka quotMicrosoft SharePoint XSS Vulnerability.quot