Description

Cross-site scripting (XSS) vulnerability in Microsoft Windows SharePoint Services 2.0 allows remote attackers to inject arbitrary web script or HTML via the Picture Source (aka picture object source) field in the Rich Text Editor.

Remediation

References

CVE-2008-1888

Related Vulnerabilities

phpMyFAQ Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2018-16651)

Coppermine Cross-site Scripting (XSS) Vulnerability (CVE-2015-3921)

Apache HTTP Server Numeric Errors Vulnerability (CVE-2006-3747)

e107 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3731)

MySQL CVE-2022-21600 Vulnerability (CVE-2022-21600)

Severity

Medium

Classification

CVE-2008-1888 CWE-707

Tags

Missing Update Known Vulnerabilities