2 matches found
CVE-2019-1076
CVE-2019-1076 is a Cross-site Scripting (XSS) vulnerability affecting Microsoft Team Foundation Server and Azure DevOps Server. The issue arises when input is not properly sanitized, allowing an attacker to execute script in the context of the affected user. Public exploit activity is noted in th...
Security Updates for Microsoft Team Foundation Server and Azure DevOps Server (July 2019)
The Microsoft Team Foundation or Azure DevOps Server is missing security updates. It is, therefore, affected by multiple vulnerabilities : - A Cross-site Scripting XSS vulnerability exists when Team Foundation Server does not properly sanitize user provided input. An authenticated attacker could...