Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:19707
HistoryMay 31, 2010 - 12:00 a.m.

Microsoft ASP.NET 2.0 InnerHtml属性远程跨站脚本漏洞

2010-05-3100:00:00
Root
www.seebug.org
39

EPSS

0.004

Percentile

72.9%

JSON

CVE ID: CVE-2010-2084

ASP.NET是一套由Microsoft分发的帮助开发者构建基于WEB应用的系统。

大多数ASP.NET控件都是从HtmlContainerControl继承的,而ASP.NET 2.0没有禁止对其设置InnerHtml属性,这可能导致跨站脚本攻击。

Microsoft ASP.NET 2.0
厂商补丁:

Microsoft

目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:

http://www.microsoft.com/technet/security/

Related

cvelist 1
prion 1
nvd 1
openvas 2
cve 1
ibm 1
cvelist
cvelist
CVE-2010-2084
2010-05-27 18:32:00
prion
prion
Cross site scripting
2010-05-27 19:00:00
nvd
nvd
CVE-2010-2084
2010-05-27 19:00:01
openvas
openvas
Microsoft ASP.NET Cross-Site Scripting vulnerability
2010-06-09 00:00:00
Microsoft ASP.NET Cross-Site Scripting vulnerability
2010-06-09 00:00:00
cve
cve
CVE-2010-2084
2010-05-27 19:00:01
ibm
ibm
Security Bulletin: IBM Cognos Command Center has addressed vulnerabilities IBM® Semeru Java™ Version 11, Apache ActiveMQ and Microsoft .Net MVC Framework for ASP.Net
2024-02-28 20:42:56

EPSS

0.004

Percentile

72.9%

JSON
Related for SSV:19707
cvelist1prion1nvd1openvas2cve1ibm1