2 matches found
CVE-2019-0777
CVE-2019-0777 is a Cross-site Scripting (XSS) vulnerability in Microsoft Team Foundation Server (TFS). The root cause is improper sanitization of user input in TFS, enabling an attacker to run script in the context of a logged-in user. Affected products include Team Foundation Server, with specif...
KLA11433 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A tampering vulnerability in NuGet Package Manager can be exploited remotely to spoo...