Medium severity5.4NVD Advisory· Published Sep 11, 2019· Updated Jun 17, 2026
CVE-2019-1305
CVE-2019-1305
Description
A Cross-site Scripting (XSS) vulnerability exists when Team Foundation Server does not properly sanitize user provided input, aka 'Team Foundation Server Cross-site Scripting Vulnerability'.
Affected products
5(expand)+ 3 more
- (no CPE)
- (no CPE)range: 2017 Update 3.1
- (no CPE)range: Update 4.2
- (no CPE)range: Update 1.2
- Range: 2019.0.1
Patches
Vulnerability mechanics
References
1- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1305nvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.