CVSS: 6.3EPSS: 0%CPEs: 2EXPL: 0CVE-2019-11212 – TIBCO MDM Exposes Cross-Site Scripting Vulnerabilities
https://notcve.org/view.php?id=CVE-2019-11212
The MDM server component of TIBCO Software Inc's TIBCO MDM contains multiple vulnerabilities that theoretically allow an authenticated user with specific roles to perform cross-site scripting (XSS) attacks. This issue affects TIBCO Software Inc.'s TIBCO MDM version 9.0.1 and prior versions; version 9.1.0. El componente del servidor MDM del TIBCO MDM de TIBCO Software Inc contiene múltiples vulnerabilidades que teóricamente permiten a un usuario autenticado con roles específicos realizar ataques de scripting entre sitios (XSS). Este problema afecta a la versión 9.0.1 de TIBCO Software Inc. • http://www.tibco.com/services/support/advisories https://www.tibco.com/support/advisories/2019/10/tibco-security-advisory-october-8-2019-tibco-mdm • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •