3 matches found
Microsoft FrontPage Server Extensions Cross Site Scripting (MS06-017: CVE-2006-0015)
A Cross Site Scripting vulnerability exists in Microsoft FrontPage Server Extensions and Microsoft SharePoint Team Services. The vulnerability is caused as a result of the failure of these products to properly validate certain CGI parameters passed to them. This vulnerability allows arbitrary HTM...
FreeBSD Ports: frontpage -- cross site scripting vulnerability
The remote host is missing an update to the system as announced in the referenced advisory. VID c0171f59-ea8a-11da-be02-000c6ec775d9 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
CVE-2006-0015
The CVE-2006-0015 entry describes a cross-site scripting (XSS) vulnerability in Microsoft FrontPage Server Extensions 2002 and SharePoint Team Services via the /_vti_bin/_vti_adm/fpadmdll.dll page. The root cause is improper sanitization of CGI parameters (operation, command, name), allowing remo...