Cross-site scripting vulnerability in Microsoft SharePoint Foundation, SharePoint Services, Office SharePoint Server| ID: oval:org.secpod.oval:def:2270 | Date: (C)2011-09-14 (M)2022-10-10 |
| Class: VULNERABILITY | Family: windows |
The host is installed with Microsoft SharePoint Foundation 2010 or Microsoft Windows SharePoint Services 3.0 Service Pack 2 or Microsoft Windows SharePoint Services 2.0 or Microsoft Office SharePoint Server 2010 and prone to cross-site scripting vulnerability. A flaw is present in the applications which is caused by improper input validation. Successful exploitation allows remote attackers to gain privilege or disclose information.
| Platform: |
| Microsoft Windows 2000 |
| Microsoft Windows 7 |
| Microsoft Windows Server 2003 |
| Microsoft Windows Server 2008 |
| Microsoft Windows Vista |
| Microsoft Windows XP |
| Product: |
| Microsoft Office SharePoint Server 2010 |
| Microsoft SharePoint Foundation 2010 |
| Microsoft Windows SharePoint Services 2.0 |
| Microsoft Windows SharePoint Services 3.0 |
