2 matches found
CVE-2020-16871
CVE-2020-16871: Microsoft Dynamics 365 (on-premises) contains a cross-site scripting vulnerability due to improper sanitization of crafted web requests. An authenticated attacker could send a specially crafted request to an affected Dynamics server and execute script in the security context of th...
KLA11953 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics 365. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A cross-site-scripting XSS vulnerability Microsoft Dynamics 365 On-Premise can be...