Cross-Site Scripting Flaws in Microsoft SharePoint Portal Server 2001
CVE-2004-0379

Currently unrated

Key Information:

Vendor: Microsoft
Status: Sharepoint Portal Server
Vendor: CVE Published:; 4 May 2004

Summary

Multiple cross-site scripting (XSS) vulnerabilities exist in Microsoft SharePoint Portal Server 2001, enabling remote attackers to inject and execute arbitrary web scripts. This security flaw can lead to the unauthorized processing of web content and potentially allow attackers to steal sensitive information, including session cookies. Proper sanitization and validation of user inputs are critical to mitigating such security risks.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/15729

vdb-entryx_refsource_XF

http://marc.info/?l=bugtraq&m=108118352303273&w=2

mailing-listx_refsource_BUGTRAQ

EPSS Score

10% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 4, 2004
Vulnerability Reserved
Apr 2, 2004