Description
Cross-site scripting (XSS) vulnerability in Microsoft Office SharePoint Server 2010, Windows SharePoint Services 2.0 and 3.0 SP2, and SharePoint Foundation 2010 allows remote attackers to inject arbitrary web script or HTML via the URI, aka "SharePoint XSS Vulnerability."
Remediation
References
Related Vulnerabilities
WordPress Plugin Mini Mail Dashboard Widget 'abspath' Parameter Remote File Include (1.36)
Oracle Database Server CVE-2014-4290 Vulnerability (CVE-2014-4290)
LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2021-44967)
SharePoint CVE-2022-37961 Vulnerability (CVE-2022-37961)
XWikiplatform Missing Authorization Vulnerability (CVE-2025-32973)