Microsoft SharePoint Server Picture Source HTML Injection Vulnerability

info
discussion
exploit
solution
references

Microsoft SharePoint Server Picture Source HTML Injection Vulnerability

Attackers can exploit this issue via a browser.

The following example exploit is available to be entered into the 'Picture Source' field:

/data/vulnerabilities/exploits/28706.html