CVE-2011-1893
Microsoft Office SharePoint Server 2010 - XSS
Title source: llmDescription
Cross-site scripting (XSS) vulnerability in Microsoft Office SharePoint Server 2010, Windows SharePoint Services 2.0 and 3.0 SP2, and SharePoint Foundation 2010 allows remote attackers to inject arbitrary web script or HTML via the URI, aka "SharePoint XSS Vulnerability."
References (3)
Scores
EPSS
0.5889
EPSS Percentile
98.2%
Classification
CWE
CWE-79
Status
published
Affected Products (6)
microsoft/sharepoint_foundation
microsoft/sharepoint_server
microsoft/sharepoint_services
microsoft/sharepoint_services
microsoft/sharepoint_services
n/a/n/a
Timeline
Published
Sep 15, 2011
Tracked Since
Feb 18, 2026