Total vulnerabilities in the database
Cross-site scripting (XSS) vulnerability in the toStaticHTML API, as used in Microsoft Office InfoPath 2003 SP3, 2007 SP1, and 2007 SP2; Office SharePoint Server 2007 SP1 and SP2; SharePoint Services 3.0 SP1 and SP2; and Internet Explorer 8 allows remote attackers to inject arbitrary web script or HTML via vectors related to sanitization.
| Software | From | Fixed in |
|---|---|---|
| microsoft / office_infopath | 2003-sp3 | 2003-sp3.x |
| microsoft / office_infopath | 2007-sp2 | 2007-sp2.x |
| microsoft / office_infopath | 2007-sp1 | 2007-sp1.x |
| microsoft / sharepoint_server | 2007-sp2 | 2007-sp2.x |
| microsoft / sharepoint_server | 2007-sp1 | 2007-sp1.x |
| microsoft / sharepoint_services | 3.0-sp2 | 3.0-sp2.x |
| microsoft / sharepoint_services | 3.0-sp1 | 3.0-sp1.x |
| microsoft / internet_explorer | 8 | 8.x |