CVE-2013-3179

Name of the Vulnerable Software and Affected Versions Microsoft SharePoint Server versions 2007 SP3 through 2013

Description The issue allows remote attackers to inject arbitrary web script or HTML via a crafted request. An attacker who successfully exploits this could perform cross-site scripting attacks and run script in the security context of the logged-on user.

Recommendations For Microsoft SharePoint Server versions 2007 SP3 through 2013, update to a version that includes the fix for this issue to prevent cross-site scripting attacks. As a temporary workaround, consider restricting access to sensitive areas of the server to minimize the risk of exploitation.