XSS in Microsoft Groove_server

CVE-2013-1289

Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Server 2010 SP1, Groove Server 2010 SP1, SharePoint Foundation 2010 SP1, and Office Web Apps 2010 SP1 allows remote attackers to inject arbitrary web script or HTML via a cra…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.450 (97.7th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References