4 matches found
Cross-Site Scripting (CVE-2005-0543; CVE-2014-4075; CVE-2014-4116; CVE-2014-6325; CVE-2014-6365; CVE-2015-1636; CVE-2015-1640; CVE-2015-1757)
...
Microsoft Project Server Elevation of Privilege Vulnerability (3052044)
This host is missing an important security update according to Microsoft Bulletin MS15-036. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...
CVE-2015-1640
CVE-2015-1640 describes a cross-site scripting (XSS) vulnerability impacting Microsoft Project Server 2010 SP2 and 2013 SP1, attributed to insufficient input filtering in SharePoint/Project Server components. The core issue is improper sanitization of crafted requests that allows an attacker to i...
KLA10561 Code injection vulnerability in Microsoft Sharepoint
An XSS vulnerabilities were found in Microsoft Sharepoint. By exploiting these vulnerabilities malicious users can inject arbitrary scripts. These vulnerabilities can be exploited remotely via a specially designed request. Original advisories MS15-036 CVE-2015-1653 CVE-2015-1640 Related products...