2 matches found
CVE-2020-16864
CVE-2020-16864 is a cross-site scripting vulnerability in Microsoft Dynamics 365 (on-premises). The root cause is insufficient sanitization of specially crafted web requests to the Dynamics server, enabling an authenticated attacker to run scripts in the browser in the context of the current user...
KLA11953 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics 365. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A cross-site-scripting XSS vulnerability Microsoft Dynamics 365 On-Premise can be...