Description

Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Foundation 2013 Gold and SP1 and SharePoint Server 2013 Gold and SP1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted request, aka "Microsoft SharePoint XSS Vulnerability."

Remediation

References

CVE-2015-1636

Related Vulnerabilities

WordPress Plugin Database for Contact Form 7, WPforms, Elementor forms Cross-Site Scripting (1.2.0)

Sqlite NULL Pointer Dereference Vulnerability (CVE-2019-9937)

WordPress Plugin WP-UserAgent Cross-Site Scripting (1.0.5)

WordPress Plugin Lightbox Multiple Unspecified Vulnerabilities (2.0.7)

WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3126)

Severity

Low

Classification

CVE-2015-1636 CWE-707

Tags

Missing Update Known Vulnerabilities