11 matches found
Cross-site Scripting (XSS)
Microsoft.AspNet.SignalR is vulnerable to cross-site scripting XSS attack. The application does not properly sanitize user-supplied input before displaying it. This can allow a malicious user to inject and execute arbitrary code in the target user's browser which can lead to access to...
CVE-2013-5042
Cross-site scripting XSS vulnerability in Microsoft ASP.NET SignalR 1.1.x before 1.1.4 and 2.0.x before 2.0.1, and Visual Studio Team Foundation Server 2013, allows remote attackers to inject arbitrary web script or HTML via crafted Forever Frame transport protocol data, aka "SignalR XSS...
Cross site scripting
Cross-site scripting XSS vulnerability in Microsoft ASP.NET SignalR 1.1.x before 1.1.4 and 2.0.x before 2.0.1, and Visual Studio Team Foundation Server 2013, allows remote attackers to inject arbitrary web script or HTML via crafted Forever Frame transport protocol data, aka "SignalR XSS...
CVE-2013-5042
CVE-2013-5042 is a cross-site scripting (XSS) vulnerability in Microsoft ASP.NET SignalR 1.1.x (before 1.1.4) and 2.0.x (before 2.0.1), and in Visual Studio Team Foundation Server 2013. The weakness allows remote attackers to inject arbitrary web script or HTML via crafted Forever Frame transport...
CVE-2013-5042
Cross-site scripting XSS vulnerability in Microsoft ASP.NET SignalR 1.1.x before 1.1.4 and 2.0.x before 2.0.1, and Visual Studio Team Foundation Server 2013, allows remote attackers to inject arbitrary web script or HTML via crafted Forever Frame transport protocol data, aka "SignalR XSS...
Microsoft ASP.NET SignalR CVE-2013-5042 Cross Site Scripting Vulnerability
Description Microsoft ASP.NET SignalR is prone to a cross-site scripting vulnerability because it fails to properly encode user input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could allow...
MS13-103: Description of the security update for Microsoft Visual Studio Team Foundation Server 2013: December 10, 2013
None None...
Microsoft Visual Studio Team Foundation Server跨站脚本执行漏洞(MS12-061)
BUGTRAQ ID: 55409 CVE ID: CVE-2012-1892 Microsoft Visual Studio Team Foundation Server是微软应用生命周期管理解决方案的核心协作平台,可实现软件递送流程自动化,包括有效管理软件开发项目的工具。 Microsoft Visual Studio Team Foundation Server存在反射XSS漏洞,可允许攻击者注入客户端脚本到IE的用户实例中或所有通过Team Foundation Server Web访问的Web浏览器中。该脚本可欺骗内容、泄露信息、以目标用户权限执行任意操作。 0 Microso...
Microsoft Visual Studio Team Foundation Server 2013 MSI - Language Neutral
This includes the following MSIs: Microsoft Team Foundation Server 2013 x64 - E42CB2FF-C11E-3463-AAEF-1A78FDCEE360, Microsoft Team Foundation Server 2013 x86 - ECF3ACAB-F506-3A8E-A400-62B2464FDE8A...
VS 2005 - VSTF - PERF - ENU.SP0
...
Microsoft Visual Studio Team Foundation Server 2010 Service Pack 1
This download installs Visual Studio Team Foundation Server 2010 Service Pack 1 SP1. This service pack release addresses issues that were found through a combination of customer and partner feedback, as well as internal testing. This service pack offers Team Foundation Server users improvements i...