This host is running Microsoft SharePoint Server and is prone to Cross Site Scripting vulnerability.
Successful exploitation will allow remote authenticated users to leverage same-origin relationships and conduct cross-site scripting attacks by uploading TXT files. Impact Level: Application
Upgrade to SharePoint Server 2010 or later. For updates refer to http://sharepoint.microsoft.com/Pages/Default.aspx
This flaw is due to insufficient validation of user supplied data passed into 'SourceUrl' and 'Source' parameters in the 'download.aspx' in SharePoint Team Services.
Microsoft Office SharePoint Server 2007 220.127.116.1121 and prior.
Updated on 2017-03-28