CVE-2012-0145 in SharePoint
Сводка (Английский)
Cross-site scripting (XSS) vulnerability in wizardlist.aspx in Microsoft Office SharePoint Server 2010 Gold and SP1 and SharePoint Foundation 2010 Gold and SP1 allows remote attackers to inject arbitrary web script or HTML via JavaScript sequences in a URL, aka "XSS in wizardlist.aspx Vulnerability."
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Резервировать
13.12.2011
Раскрытие
14.02.2012
Статус
Подтверждённый
Записи
VulDB provides additional information and datapoints for this CVE:
| ИД | Уязвимость | CWE | Экс | Кон | CVE |
|---|---|---|---|---|---|
| 4636 | Microsoft SharePoint wizardlist.aspx межсайтовый скриптинг | 79 | недоказанный | Официальное исправление | CVE-2012-0145 |