3 matches found
CVE-2020-16872
CVE-2020-16872 is a cross-site scripting vulnerability in Microsoft Dynamics 365 (on-premises). An authenticated attacker could send a specially crafted web request to an affected Dynamics server, triggering XSS and executing script in the security context of the currently authenticated user. Imp...
CVE-2020-16872 Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability
...
KLA11953 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics 365. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A cross-site-scripting XSS vulnerability Microsoft Dynamics 365 On-Premise can be...