GHSA-3c39-338m-m4vpHighCVSS 8.1

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft...

Published
May 14, 2026
Last Modified
May 15, 2026

🔗 CVE IDs covered (1)

CVE-2026-42897

📋 Description

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network.

🔗 References (4)