Description
Cross-site scripting (XSS) vulnerability in EditForm.aspx in Microsoft Office SharePoint Server 2010 and SharePoint Foundation 2010 allows remote attackers to inject arbitrary web script or HTML via a post, aka "Editform Script Injection Vulnerability."
Remediation
References
Related Vulnerabilities
Twisted Web HTTP Server Direct Request ('Forced Browsing') Vulnerability (CVE-2016-1000111)
WordPress Plugin FV Flowplayer Video Player SQL Injection (7.5.15.727)
MySQL Observable Discrepancy Vulnerability (CVE-2019-1559)
WordPress Plugin MobileView by ColorLabs & Company Cross-Site Scripting (1.0.7)
WordPress Plugin Slideshow Gallery LITE Multiple Unspecified Vulnerabilities (1.5.3.3)