Description
Microsoft Web Applications 2010 SP1 and SP2 allows remote authenticated users to execute arbitrary code via crafted page content, aka "Web Applications Page Content Vulnerability."
References (2)
Core 2
Core References
Vendor Advisory vendor-advisory
x_refsource_ms
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-022
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1030227
Scores
EPSS
0.1038
EPSS Percentile
95.2%
Details
CWE
CWE-94
Status
published
Products (1)
microsoft/web_applications
2010 sp1 (2 CPE variants)
Published
May 14, 2014
Tracked Since
Feb 18, 2026