Description

Cross-site scripting (XSS) vulnerability in Microsoft Windows SharePoint Services 2.0 allows remote attackers to inject arbitrary web script or HTML via the Picture Source (aka picture object source) field in the Rich Text Editor.

Remediation

References

CVE-2008-1888

Related Vulnerabilities

phpMyFAQ Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-0788)

WordPress Plugin WP Cost Estimation & Payment Forms Builder Multiple Vulnerabilities (9.642)

phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1754)

MySQL CVE-2015-2571 Vulnerability (CVE-2015-2571)

phpBB Improper Input Validation Vulnerability (CVE-2019-9826)

Severity

Medium

Classification

CVE-2008-1888 CWE-707

Tags

Missing Update Known Vulnerabilities