2 matches found
CVE-2006-0015
The CVE-2006-0015 entry describes a cross-site scripting (XSS) vulnerability in Microsoft FrontPage Server Extensions 2002 and SharePoint Team Services via the /_vti_bin/_vti_adm/fpadmdll.dll page. The root cause is improper sanitization of CGI parameters (operation, command, name), allowing remo...
CVE-2005-0049
The CVE-2005-0049 issue affects Windows SharePoint Services for Windows Server 2003 and SharePoint Team Services, arising from insufficient validation of input to an HTTP redirection query. The underlying cause is improper handling of redirection query data, enabling remote attackers to inject ar...