Microsoft: >> Sharepoint Server >> 16.0.17328.20292 Security Vulnerabilities
Microsoft SharePoint uses URLs with the same hostname and port number for a web site's primary files and individual users' uploaded files (aka attachments), which allows remote authenticated users to leverage same-origin relationships and conduct cross-site scripting (XSS) attacks by uploading HTML documents.
CVSS Score
3.5
EPSS Score
0.163
Published
2008-11-10
Page 2