Lucene search
China National Vulnerability DatabaseCNVD-2024-01175HistoryApr 11, 2023 - 12:00 a.m.
IBM TRIRIGA Application Platform Cross-Site Scripting Vulnerability (CNVD-2024-01175)
2023-04-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
3
ibm
tririga
application
platform
cross-site scripting
vulnerability
international business machines
technology
applications
design-time
run-time
components
enterprise-class
customer-specific
configurations
filtering
escaping
user-supplied data
exploited
attacker
web script
html
crafted payload
The IBM TRIRIGA Application Platform is a set of technology platforms for deploying TRIRIGA applications from International Business Machines (IBM). The platform provides a set of design-time and run-time components for building and running its enterprise-class applications, respectively, and supports customer-specific configurations without requiring changes to the source code. The IBM TRIRIGA Application Platform suffers from a cross-site scripting vulnerability that stems from the application’s lack of effective filtering and escaping of user-supplied data, which could be exploited by an attacker to execute arbitrary Web script or HTML by injecting a crafted payload.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm tririga application platform >=4.0, | lt | 4.0.3 |
Related
nvd
nvd
CVE-2022-43914
2023-04-07 14:15:07
cve
cve
CVE-2022-43914
2023-04-07 14:15:07
prion
prion
Cross site scripting
2023-04-07 14:15:00
cvelist
cvelist
CVE-2022-43914 IBM TRIRIGA Application Platform cross-site scripting
2023-04-07 13:26:55
