Description
Cross-site scripting (XSS) vulnerability in System.Web.Mvc.dll in Microsoft ASP.NET Model View Controller (MVC) 2.0 through 5.1 allows remote attackers to inject arbitrary web script or HTML via a crafted web page, aka "MVC XSS Vulnerability."
Remediation
References
Related Vulnerabilities
Internet Information Services Other Vulnerability (CVE-2001-1186)
PHP Resource Management Errors Vulnerability (CVE-2014-0237)
WordPress Plugin BP Portfolio Cross-Site Scripting (1.0.2)
Oracle Database Server CVE-2006-5345 Vulnerability (CVE-2006-5345)
OpenSSL Improper Authentication Vulnerability (CVE-2009-0653)