QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2012-1859

Back to search

CVE-2012-1859

Published: Jul 10, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in scriptresx.ashx in Microsoft SharePoint Server 2010 Gold and SP1, SharePoint Foundation 2010 Gold and SP1, and Office Web Apps 2010 Gold and SP1 allows remote attackers to inject arbitrary web script or HTML via crafted JavaScript elements in a URL, aka "XSS scriptresx.ashx Vulnerability."

VendorProductVersions

n/a

n/a

affected
n/a

References

TA12-192A
third-party-advisory
x_refsource_CERT
MS12-050
vendor-advisory
x_refsource_MS
oval:org.mitre.oval:def:15589
vdb-entry
signature
x_refsource_OVAL

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now