3 matches found
CVE-2020-16858
CVE-2020-16858 is a cross-site scripting vulnerability in Microsoft Dynamics 365 (on-premises). The issue arises when Dynamics Server does not properly sanitize a specially crafted web request, allowing an authenticated attacker to execute script in the user’s browser and access or modify data wi...
CVE-2020-16858 Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability
...
KLA11953 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics 365. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A cross-site-scripting XSS vulnerability Microsoft Dynamics 365 On-Premise can be...