XSS in Microsoft Sharepoint_foundation
CVE-2015-1653
Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Foundation 2013 SP1 and SharePoint Server 2013 SP1 allows remote attackers to inject arbitrary web script or HTML via a crafted request, aka "Microsoft SharePoint XSS Vulnera…
Vulnerability class: XSS (Cross-Site Scripting)
EPSS: 0.099 (93.1th percentile) — read the EPSS interpretation.
Affected products
- Microsoft Sharepoint_foundation — versions 2013
- Microsoft Sharepoint_server — versions 2013
- N/a — versions n/a