CVE-2015-2475
CVE-2015-2475 is an XSS vulnerability in the UDDI Services component of Microsoft Windows Server 2008 SP2 and BizTalk Server 2010/2013 (Gold and R2). The flaw arises from improper validation/sanitization of input in the uddi/search/frames.aspx FRAME parameter, enabling remote attackers to inject ...