Description
Cross-site scripting (XSS) vulnerability in Microsoft ASP.NET SignalR 1.1.x before 1.1.4 and 2.0.x before 2.0.1, and Visual Studio Team Foundation Server 2013, allows remote attackers to inject arbitrary web script or HTML via crafted Forever Frame transport protocol data, aka "SignalR XSS Vulnerability."
Remediation
References
Related Vulnerabilities
WordPress Plugin FileBird-WordPress Media Library Folders & File Manager Cross-Site Scripting (2.4)
WordPress Plugin Publish to Schedule Cross-Site Request Forgery (4.4.2)
IBM RTC CVE-2015-1971 Vulnerability (CVE-2015-1971)
OpenSSL Improper Authentication Vulnerability (CVE-2009-1390)
Liferay Portal Inefficient Regular Expression Complexity Vulnerability (CVE-2022-42124)