Lucene search
K

3 matches found

VulnCheck KEV
VulnCheck KEV
added 2014/01/15 12:0 a.m.3 views

VulnCheck KEV: CVE-2012-2520

Cross-site scripting XSS vulnerability in Microsoft InfoPath 2007 SP2 and SP3 and 2010 SP1, Communicator 2007 R2, Lync 2010 and 2010 Attendee, SharePoint Server 2007 SP2 and SP3 and 2010 SP1, Groove Server 2010 SP1, Windows SharePoint Services 3.0 SP2, SharePoint Foundation 2010 SP1, and Office...

4.3CVSS5.8AI score0.28477EPSS
Exploits2References1
seebug.org
seebug.org
added 2012/10/11 12:0 a.m.39 views

Microsoft多个产品HTML过滤组件跨站脚本执行漏洞(MS12-066)

CVECAN ID: CVE-2012-2520 Microsoft是一家基于美国的跨国电脑科技公司。以研发、制造、授权和提供广泛的电脑软件服务业务为主。 Microsoft多个产品在HTML过滤组件内没有正确过滤某些输入即返给用户使用。成功利用此漏洞的攻击者可执行跨站脚本攻击并以当前用户权限运行脚本。 0 Microsoft SharePoint Server 2007 Microsoft Office Web Apps Microsoft Groove Server 2010 Microsoft Lync 2010 Microsoft Office Communicator 2007...

4.3CVSS6.3AI score0.28477EPSS
Exploits2
CVE
CVE
added 2012/10/09 9:0 p.m.76 views

CVE-2012-2520

CVE-2012-2520 is a cross-site scripting vulnerability in Microsoft’s HTML sanitization component affecting multiple products (InfoPath 2007/2010, Communicator/Lync 2010, SharePoint Server/Foundation, Groove Server, Office Web Apps). The issue arises from improper input filtering in the HTML sanit...

4.3CVSS5.6AI score0.28477EPSS
Exploits2References9Affected Software8
Rows per page
Query Builder