Cross-site scripting (XSS) vulnerability in Microsoft ASP.NET SignalR 1.1.x before 1.1.4 and 2.0.x before 2.0.1, and Visual Studio Team Foundation Server 2013, allows remote attackers to inject arbitrary web script or HTML via crafted Forever Frame transport protocol data, aka "SignalR XSS Vulnerability."
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: microsoft
Published: 2013-12-11T00:00:00
Updated: 2024-08-06T16:59:41.270Z
Reserved: 2013-08-06T00:00:00
Link: CVE-2013-5042
Vulnrichment
No data.
NVD
Status : Modified
Published: 2013-12-11T00:55:03.803
Modified: 2024-11-21T01:56:57.710
Link: CVE-2013-5042
Redhat
No data.