Lucene search
K

5 matches found

Check Point Advisories
Check Point Advisories
added 2013/04/24 12:0 a.m.11 views

Microsoft HTML Sanitization Cross Site Scripting (MS13-035) - High Confidence (CVE-2013-1289)

A cross-site scripting vulnerability has been reported in multiple Microsoft products. The flaw is due to the way that the applications sanitize HTML. Remote attackers can exploit this vulnerability by submitting crafted HTML to the vulnerable server that uses the HTML Sanitization library, and...

4.3CVSS5.8AI score0.15432EPSS
Exploits0
OpenVAS
OpenVAS
added 2013/04/10 12:0 a.m.24 views

Microsoft Office Web Apps HTML Sanitisation Component XSS Vulnerability (2821818)

This host is missing an important security update according to Microsoft Bulletin MS13-035. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...

4.3CVSS5AI score0.15432EPSS
Exploits0References3
CVE
CVE
added 2013/04/09 10:0 p.m.66 views

CVE-2013-1289

The CVE-2013-1289 entry covers a cross-site scripting (XSS) vulnerability in multiple Microsoft HTML Sanitization components used by SharePoint Server 2010 SP1, Groove Server 2010 SP1, SharePoint Foundation 2010 SP1, and Office Web Apps 2010 SP1. The issue arises from the HTML sanitization logic,...

4.3CVSS5.4AI score0.15432EPSS
Exploits0References3Affected Software5
Symantec
Symantec
added 2013/04/09 12:0 a.m.31 views

Microsoft SharePoint CVE-2013-1289 HTML Injection Vulnerability

Description Microsoft SharePoint is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input. Attacker-supplied HTML and script code would run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication...

4.3CVSS6AI score0.15432EPSS
Exploits0Affected Software4
Check Point Advisories
Check Point Advisories
added 2013/04/03 12:0 a.m.4 views

Microsoft HTML Sanitization Cross Site Scripting (MS13-035; CVE-2013-1289)

An elevation of privilege vulnerability exists in the way that HTML strings are sanitized. Successful exploitation could allow an attacker to perform cross-site scripting attacks against affected users, resulting in script execution in the target's security context...

4.3CVSS5.8AI score0.15432EPSS
Exploits0
Rows per page
Query Builder