Description

Cross-site scripting (XSS) vulnerability in Microsoft Office SharePoint Server 2010 Gold and SP1, and SharePoint Foundation 2010, allows remote attackers to inject arbitrary web script or HTML via the URI, aka "XSS in SharePoint Calendar Vulnerability."

Remediation

References

CVE-2011-0653

Related Vulnerabilities

WordPress Plugin NextScripts:Social Networks Auto-Poster Security Bypass (4.3.17)

WordPress Plugin Realteo Multiple Vulnerabilities (1.2.3)

WordPress Plugin GoUrl Bitcoin Payment Gateway & Paid Downloads & Membership Arbitrary File Upload (1.4.14)

WordPress Plugin Custom Website Data Cross-Site Scripting (1.0)

Envoy Proxy Always-Incorrect Control Flow Implementation Vulnerability (CVE-2022-21655)

Severity

Medium

Classification

CVE-2011-0653 CWE-707

Tags

Missing Update Known Vulnerabilities