cve/CVE-2010-1257.md at master

0xMarcio/cve

Fork 0

Files

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

937 B

Raw Permalink Blame History

CVE-2010-1257

Description

Cross-site scripting (XSS) vulnerability in the toStaticHTML API, as used in Microsoft Office InfoPath 2003 SP3, 2007 SP1, and 2007 SP2; Office SharePoint Server 2007 SP1 and SP2; SharePoint Services 3.0 SP1 and SP2; and Internet Explorer 8 allows remote attackers to inject arbitrary web script or HTML via vectors related to sanitization.

POC

Reference

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-035
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-039

Github

No PoCs found on GitHub currently.

937 B Raw Permalink Blame History

CVE-2010-1257

Description

POC

Reference

Github

937 B

Raw Permalink Blame History