Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2011-1890
HistorySep 15, 2011 - 12:26 p.m.

CVE-2011-1890

2011-09-1512:26:48
CWE-79
[email protected]
web.nvd.nist.gov
7

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.214

Percentile

96.5%

JSON

Cross-site scripting (XSS) vulnerability in EditForm.aspx in Microsoft Office SharePoint Server 2010 and SharePoint Foundation 2010 allows remote attackers to inject arbitrary web script or HTML via a post, aka “Editform Script Injection Vulnerability.”

Affected configurations

Nvd
Node
microsoftsharepoint_foundationMatch2010
OR
microsoftsharepoint_serverMatch2010
VendorProductVersionCPE
microsoftsharepoint_foundation2010cpe:2.3:a:microsoft:sharepoint_foundation:2010:*:*:*:*:*:*:*
microsoftsharepoint_server2010cpe:2.3:a:microsoft:sharepoint_server:2010:*:*:*:*:*:*:*

Related

cvelist 1
symantec 1
checkpoint_advisories 2
cve 1
prion 1
mskb 1
securityvulns 1
openvas 2
nessus 1
cvelist
cvelist
CVE-2011-1890
2011-09-15 10:00:00
symantec
symantec
Microsoft SharePoint 'EditForm.aspx' CVE-2011-1890 Script Injection Vulnerability
2011-09-13 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Share Point TextField_spSave Cross-Site Scripting (MS11-074)
2011-09-13 00:00:00
Preemptive Protection against Microsoft SharePoint Server Multiple Cross Site Scripting Vulnerabilities (MS11-074)
2011-09-13 00:00:00
cve
cve
CVE-2011-1890
2011-09-15 12:26:48
prion
prion
Cross site scripting
2011-09-15 12:26:00
mskb
mskb
MS11-074: Vulnerabilities in Microsoft SharePoint could allow elevation of privilege: September 13, 2011
2011-09-13 00:00:00
securityvulns
securityvulns
Microsoft Sharepoint multiple security vulnerabilities
2011-09-20 00:00:00
openvas
openvas
Microsoft SharePoint Multiple Privilege Escalation Vulnerabilities (2451858)
2011-09-14 00:00:00
Microsoft SharePoint Multiple Privilege Escalation Vulnerabilities (2451858)
2011-09-14 00:00:00
nessus
nessus
MS11-074: Vulnerabilities in Microsoft SharePoint Could Allow Elevation of Privilege (2451858)
2011-09-14 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.214

Percentile

96.5%

JSON
Related for NVD:CVE-2011-1890
cvelist1symantec1checkpoint_advisories2cve1prion1mskb1securityvulns1openvas2nessus1