CVSS: 6.1EPSS: 0%CPEs: 4EXPL: 0CVE-2019-0868
https://notcve.org/view.php?id=CVE-2019-0868
A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. This CVE ID is unique from CVE-2019-0866, CVE-2019-0867, CVE-2019-0870, CVE-2019-0871. Se presenta una vulnerabilidad de tipo Cross-site Scripting (XSS) cuando Azure DevOps Server y Team Foundation Server no hacen el saneamiento apropiadamente en la entrada provista por el usuario, también se conoce como "Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability". Este ID de CVE es diferente de los CVE-2019-0866, CVE-2019-0867, CVE-2019-0870, CVE-2019-0871. • http://www.securityfocus.com/bid/107753 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0868 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 5EXPL: 0CVE-2019-0866
https://notcve.org/view.php?id=CVE-2019-0866
A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. This CVE ID is unique from CVE-2019-0867, CVE-2019-0868, CVE-2019-0870, CVE-2019-0871. Se presenta una vulnerabilidad de tipo Cross-site Scripting (XSS) cuando Azure DevOps Server y Team Foundation Server no hacen el saneamiento apropiado en la entrada provista por el usuario, también se conoce como "Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability". Este ID de CVE es diferente de los CVE-2019-0867, CVE-2019-0868, CVE-2019-0870, CVE-2019-0871. • http://www.securityfocus.com/bid/107749 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0866 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 3EXPL: 0CVE-2019-0777
https://notcve.org/view.php?id=CVE-2019-0777
A Cross-site Scripting (XSS) vulnerability exists when Team Foundation Server does not properly sanitize user provided input, aka 'Team Foundation Server Cross-site Scripting Vulnerability'. Se presenta una vulnerabilidad de cross-site-scripting (XSS) cuando Team Foundation Server no sanea apropiadamente la entrada proporcionada por el usuario, también se conoce como "Team Foundation Server Cross-site Scripting Vulnerability". • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0777 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2019-0647
https://notcve.org/view.php?id=CVE-2019-0647
An information disclosure vulnerability exists when Team Foundation Server does not properly handle variables marked as secret, aka "Team Foundation Server Information Disclosure Vulnerability." This affects Team. Existe una vulnerabilidad de divulgación de información cuando Team Foundation Server no gestiona de manera correcta las variables marcadas como secreto. Esto también se conoce como "Team Foundation Server Information Disclosure Vulnerability". Esto afecta a Team. • http://www.securityfocus.com/bid/106650 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0647 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.4EPSS: 0%CPEs: 4EXPL: 0CVE-2018-8602
https://notcve.org/view.php?id=CVE-2018-8602
A Cross-site Scripting (XSS) vulnerability exists when Team Foundation Server does not properly sanitize user provided input, aka "Team Foundation Server Cross-site Scripting Vulnerability." This affects Team. Existe una vulnerabilidad Cross-Site Scripting (XSS) cuando Team Foundation Server no sanea correctamente las entradas proporcionadas por el usuario. Esto también se conoce como "Team Foundation Server Cross-site Scripting Vulnerability". Esto afecta a Team. • http://www.securityfocus.com/bid/105895 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8602 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •