Microsoft has confirmed the existence of a serious XSS vulnerability in Microsoft SharePoint Server 2007.

"The vulnerability, which can be exploited via the browser, could allow a malicious hacker to execute arbitrary JavaScript code within the vulnerable application," writes ZDNet's Ryan Naraine.

"A proof-of-concept exploit has been publicly posted and Microsoft is expected to issue a formal security advisory before the end of this week to offer pre-patch workaround and mitigations," Naraine writes.

Click here to read the ZDNet article.