WEB APPLICATION VULNERABILITIES Standard & Premium

SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-0653)

Description

Cross-site scripting (XSS) vulnerability in Microsoft Office SharePoint Server 2010 Gold and SP1, and SharePoint Foundation 2010, allows remote attackers to inject arbitrary web script or HTML via the URI, aka "XSS in SharePoint Calendar Vulnerability."

Remediation

References

Related Vulnerabilities

Grafana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-18624)

Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-33938)

MySQL CVE-2014-2435 Vulnerability (CVE-2014-2435)

MySQL CVE-2022-21327 Vulnerability (CVE-2022-21327)

Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-18260)

Severity

Medium

Classification

CVE-2011-0653 CWE-707

Tags

Missing Update Known Vulnerabilities