CVE-2024-49038

Improper neutralization of input during web page generation ('Cross-site Scripting') in Copilot Studio by an unauthorized attacker leads to elevation of privilege over a network. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt