CVE-2011-0653
Microsoft Sharepoint Foundation - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in Microsoft Office SharePoint Server 2010 Gold and SP1, and SharePoint Foundation 2010, allows remote attackers to inject arbitrary web script or HTML via the URI, aka "XSS in SharePoint Calendar Vulnerability."
References (3)
Scores
EPSS
0.4134
EPSS Percentile
97.3%
Classification
CWE
CWE-79
Status
published
Affected Products (4)
microsoft/sharepoint_foundation
microsoft/sharepoint_server
microsoft/sharepoint_server
n/a/n/a
Timeline
Published
Sep 15, 2011
Tracked Since
Feb 18, 2026