CVE-2011-2020

2011-05-2022:00:00

mitre

www.cve.org

AI Score

5.7

Confidence

High

EPSS

0.003

Percentile

69.4%

JSON

Cross-site scripting (XSS) vulnerability in TIBCO iProcess Engine before 11.1.3 and iProcess Workspace before 11.3.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References

osvdb.org/72553

secunia.com/advisories/44639

www.securityfocus.com/bid/47921

www.tibco.com/multimedia/iprocess_advisory_20110518_tcm8-13710.txt

www.tibco.com/services/support/advisories/iprocess-advisory_20110518.jsp

www.vupen.com/english/advisories/2011/1272

exchange.xforce.ibmcloud.com/vulnerabilities/67537