Cross-site scripting vulnerability in the SQLXML component of Microsoft SQL Server 2000 allows an malicious user to execute arbitrary script via the root parameter as part of an XML SQL query, aka "Script Injection via XML Tag."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft sql server 2000 |