Microsoft : Security Vulnerabilities, CVEs, (XSS)
CVE-2015-0072
Public exploit
Cross-site scripting (XSS) vulnerability in Microsoft Internet Explorer 9 through 11 allows remote attackers to bypass the Same Origin Policy and inject arbitrary web script or HTML via vectors involving an IFRAME element that triggers a redirect, a second IFRAME element that does not trigger a redirect, and an eval of a WindowProxy object, aka "Universal XSS (UXSS)."
Max CVSS
4.3
EPSS Score
97.23%
Published
2015-02-07
Updated
2018-10-12
Microsoft Edge (Chromium-based) Webview2 Spoofing Vulnerability
Max CVSS
4.1
EPSS Score
0.04%
Published
2024-04-04
Updated
2024-04-09
Microsoft SharePoint Server Spoofing Vulnerability
Max CVSS
6.8
EPSS Score
0.04%
Published
2024-04-09
Updated
2024-04-09
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.05%
Published
2024-03-12
Updated
2024-04-11
Dynamics 365 Sales Spoofing Vulnerability
Max CVSS
7.6
EPSS Score
0.04%
Published
2024-02-13
Updated
2024-04-11
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
8.2
EPSS Score
0.11%
Published
2024-02-13
Updated
2024-04-11
Dynamics 365 Field Service Spoofing Vulnerability
Max CVSS
7.6
EPSS Score
0.04%
Published
2024-02-13
Updated
2024-04-11
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.04%
Published
2024-02-13
Updated
2024-04-11
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.04%
Published
2024-02-13
Updated
2024-04-11
Dynamics 365 Sales Spoofing Vulnerability
Max CVSS
7.6
EPSS Score
0.04%
Published
2024-02-13
Updated
2024-04-11
Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.04%
Published
2024-02-13
Updated
2024-04-11
Azure Stack Hub Spoofing Vulnerability
Max CVSS
6.5
EPSS Score
0.07%
Published
2024-02-13
Updated
2024-04-11
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.05%
Published
2023-09-12
Updated
2023-09-14
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.05%
Published
2023-09-12
Updated
2023-09-14
Dynamics Finance and Operations Cross-site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.05%
Published
2023-09-12
Updated
2023-09-14
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
6.1
EPSS Score
0.08%
Published
2023-10-10
Updated
2023-10-13
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.05%
Published
2023-11-14
Updated
2023-11-20
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.05%
Published
2023-11-14
Updated
2023-11-20
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.05%
Published
2023-12-12
Updated
2023-12-14
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
6.2
EPSS Score
0.05%
Published
2023-11-14
Updated
2023-11-20
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
8.2
EPSS Score
0.16%
Published
2023-07-11
Updated
2023-07-14
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
8.2
EPSS Score
0.08%
Published
2023-07-11
Updated
2023-07-18
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
Max CVSS
6.1
EPSS Score
0.08%
Published
2023-06-07
Updated
2024-02-03
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
6.1
EPSS Score
0.07%
Published
2023-04-11
Updated
2023-04-19
Microsoft Dynamics 365 Customer Voice Cross-Site Scripting Vulnerability
Max CVSS
6.1
EPSS Score
0.07%
Published
2023-04-11
Updated
2023-04-19