CVE-2012-1892

CVE Database · CVE-2012-1892

CVE-2012-1892

· N/AModified

CVSS v3.1

N/A

EPSS

16.52%

Published

Sep 11, 2012

Modified

Apr 28, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Cross-site scripting (XSS) vulnerability in Microsoft Visual Studio Team Foundation Server 2010 SP1 allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka "XSS Vulnerability."

Weaknesses (CWE)

CWE-79

Affected Products (1)

microsoft · visual_studio_team_foundation_servervulnerable

References (12)

http://secunia.com/advisories/50463

http://www.securityfocus.com/bid/55409

http://www.securitytracker.com/id?1027511

http://www.us-cert.gov/cas/techalerts/TA12-255A.html

US Government Resource

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-061

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15779

http://secunia.com/advisories/50463

http://www.securityfocus.com/bid/55409

http://www.securitytracker.com/id?1027511

http://www.us-cert.gov/cas/techalerts/TA12-255A.html

US Government Resource

KEV Catalog EPSS Scores Vendors All CVEs