CVE-2011-1976

CVE Database · CVE-2011-1976

CVE-2011-1976

· N/AModified

CVSS v3.1

N/A

EPSS

20.81%

Published

Aug 10, 2011

Modified

Apr 28, 2026

Public PoC / Exploit (2)

All weaponized →

Exploit-DBMicrosoft Visual Studio Report Viewer 2005 Control - Multiple Cross-Site Scripting Vulnerabilities TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Cross-site scripting (XSS) vulnerability in the Report Viewer Control in Microsoft Visual Studio 2005 SP1 and Report Viewer 2005 SP1 allows remote attackers to inject arbitrary web script or HTML via a parameter in a data source, aka "Report Viewer Controls XSS Vulnerability."

Weaknesses (CWE)

CWE-79

Affected Products (3)

microsoft · report_viewervulnerable

microsoft · visual_studiovulnerable

References (12)

http://marc.info/?l=bugtraq&m=145326307707460&w=2

Third Party Advisory

http://www.securityfocus.com/bid/49033

http://www.us-cert.gov/cas/techalerts/TA11-221A.html

Third Party AdvisoryUS Government Resource

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-067

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04945270

Third Party Advisory

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12773

http://marc.info/?l=bugtraq&m=145326307707460&w=2

Third Party Advisory

KEV Catalog EPSS Scores Vendors All CVEs