Vulnerabilities > Microsoft > Team Foundation Server > 2017
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-04-09 | CVE-2019-0777 | Cross-site Scripting vulnerability in Microsoft Team Foundation Server 2017/2018 A Cross-site Scripting (XSS) vulnerability exists when Team Foundation Server does not properly sanitize user provided input, aka 'Team Foundation Server Cross-site Scripting Vulnerability'. | 5.4 |
| 2019-01-17 | CVE-2019-0647 | Information Exposure vulnerability in Microsoft Team Foundation Server 2017/2018 An information disclosure vulnerability exists when Team Foundation Server does not properly handle variables marked as secret, aka "Team Foundation Server Information Disclosure Vulnerability." This affects Team. | 6.5 |
| 2018-11-14 | CVE-2018-8602 | Cross-site Scripting vulnerability in Microsoft Team Foundation Server 2017/2018 A Cross-site Scripting (XSS) vulnerability exists when Team Foundation Server does not properly sanitize user provided input, aka "Team Foundation Server Cross-site Scripting Vulnerability." This affects Team. | 5.4 |