3 matches found
CVE-2020-1326
CVE-2020-1326 is an XSS flaw in Azure DevOps Server caused by improper sanitization of user-supplied input. Reports in multiple sources (MSRC advisory) describe an authenticated attacker able to trigger cross-site scripting in the context of the affected user. The vulnerability affects Azure DevO...
CVE-2020-1326
A Cross-site Scripting XSS vulnerability exists when Azure DevOps Server does not properly sanitize user provided input, aka 'Azure DevOps Server Cross-site Scripting Vulnerability'...
KLA11859 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Windows Diagnostics Hub...