15 matches found
CVE-2026-11372
IBM TRIRIGA Application Platform 5.0.2 through 5.0.3 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted...
EUVD-2020-25524
Malware in sbrugna...
Security Bulletin: IBM TRIRIGA Application Platform discloses use of Apache Xerces (CVE-2022-23437)
Summary Apache Xerces2 Java XML Parser is vulnerable to a denial of service, caused by an infinite loop in the XML parser. By persuading a victim to open a specially-crafted XML document payloads, a remote attacker could exploit this vulnerability to consume system resources for prolonged duratio...
Security Bulletin: Vulnerability in jQuery affects IBM Tririga Application Platform (CVE-2019-11358)
Summary jQuery used by IBM Tririga Application Platform is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote authenticated attacker could exploit this vulnerability to execute script in a victim's Web browser within the security context of the...
CVE-2019-4208
IBM TRIRIGA Application Platform 3.5.3 and 3.6.0 is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 159129...
Security Bulletin: IBM TRIRIGA Application Platform Reflected Cross-Site Scripting (XSS) (CVE-2016-5980)
Summary The IBM TRIRIGA Application is vulnerable to Reflected Cross-Site Scripting attacks. Vulnerability Details CVEID: CVE-2016-5980 DESCRIPTION: IBM TRIRIGA Application Platform is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the We...
Security Bulletin: IBM TRIRIGA Application platform is vulnerable to information disclosure. (CVE-2016-2882)
Summary IBM TRIRIGA Platform could disclose some sensitive server information through URL request responses that could aid an attacker in further attacks against the system. Vulnerability Details CVEID: CVE-2016-2882 CVSS Base Score: 4.3 CVSS Temporal Score: See for the current score CVSS...
Security Bulletin: TRIRIGA Application Platform Cross Site Scripting Vulnerabilities. (CVE-2014-8893)
Summary IBM TRIRIGA Application Platform is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially-crafted URL to execute script in a victim's Web browser within the security context of the...
CVE-2016-0343
IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allows remote authenticated users to obtain sensitive information by reading an error message. IBM X-Force ID: 111784...
Unspecified Remote Elevation of Privilege Vulnerability in IBM TRIRIGA Application Platform
The IBM TRIRIGA Application Platform is a set of technology platforms for deploying TRIRIGA applications from IBM in the United States. The platform provides a set of design-time and run-time components for building and running its enterprise applications, respectively, and supports...
Unspecified Cross-Site Scripting Vulnerability in IBM TRIRIGA Application Platform
The IBM TRIRIGA Application Platform is a set of technology platforms for deploying TRIRIGA applications from IBM in the United States. The platform provides a set of design-time and run-time components for building and running its enterprise applications, respectively, and supports...
CVE-2016-2883
Cross-site scripting XSS vulnerability in IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.4, and 3.5 before 3.5.0.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, a different vulnerability than CVE-2016-0387...
IBM TRIRIGA Application Platform Cross-Site Scripting Vulnerability (CNVD-2016-04104)
The IBM TRIRIGA Application Platform is a set of technology platforms for deploying TRIRIGA applications from IBM in the United States. The platform provides a set of design-time and run-time components for building and running its enterprise applications, respectively, and supports...
IBM TRIRIGA Application Platform Cross-Site Request Forgery Vulnerability (CNVD-2016-03775)
The IBM TRIRIGA Application Platform is a set of technology platforms for deploying TRIRIGA applications from IBM in the United States. The platform provides a set of design-time and run-time components for building and running its enterprise applications, respectively, and supports...
Multiple Cross-Site Scripting Vulnerabilities in IBM TRIRIGA Application Platform
The IBM TRIRIGA Application Platform is a scalable technology platform for deploying IBM TRIRIGA applications. Multiple cross-site scripting vulnerabilities in IBM TRIRIGA Application Platform versions 3.2.1.x, 3.3.2.2 before 3.3.2.3, and 3.4.1.1 before 3.4.1.1 could allow a remote, authenticated...