CVE-2019-1033

Name of the Vulnerable Software and Affected Versions Microsoft SharePoint Server (affected versions not specified)

Description A cross-site scripting issue exists due to the improper sanitization of specially crafted web requests. This could allow an authenticated attacker to send a crafted request, enabling cross-site scripting attacks on affected systems. The attacker could then run scripts in the context of the current user, potentially reading unauthorized content, using the victim's identity to change permissions or delete content, and injecting malicious content into the user's browser.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.