Cross site scripting vulnerability in Microsoft Sharepoint via a crafted request - CVE-2015-1633ID: oval:org.secpod.oval:def:23795 | Date: (C)2015-03-13 (M)2021-06-02 |
Class: VULNERABILITY | Family: windows |
The host is installed with Microsoft SharePoint Foundation 2010 SP2, SharePoint Server 2010 SP2, SharePoint Foundation 2013 Gold and SP1 or SharePoint Server 2013 Gold or SP1 and is prone to a cross site scripting vulnerability. A flaw is present in the application, which fails to handle a crafted request. Successful exploitation could allow attackers to execute arbitrary code.
Platform: |
Microsoft Windows Vista |
Microsoft Windows Server 2008 |
Microsoft Windows 7 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows 8 |
Microsoft Windows 8.1 |
Microsoft Windows Server 2012 |
Microsoft Windows Server 2012 R2 |
Product: |
Microsoft SharePoint Foundation 2010 |
Microsoft SharePoint Foundation 2013 |
Microsoft SharePoint Server 2010 |
Microsoft SharePoint Server 2013 |