Cross-site scripting (XSS) vulnerability in the toStaticHTML API, as used in Microsoft Office InfoPath 2003 SP3, 2007 SP1, and 2007 SP2; Office SharePoint Server 2007 SP1 and SP2; SharePoint Services 3.0 SP1 and SP2; and Internet Explorer 8 allows remote malicious users to inject arbitrary web script or HTML via vectors related to sanitization.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft office infopath 2003 |
||
microsoft office infopath 2007 |
||
microsoft sharepoint server 2007 |
||
microsoft sharepoint services 3.0 |
||
microsoft internet_explorer 8 |