2 matches found
CVE-2021-35499 TIBCO Nimbus Stored Cross-site Scripting (XSS) vulnerabilities
The Web Reporting component of TIBCO Software Inc.'s TIBCO Nimbus contains easily exploitable Stored Cross Site Scripting XSS vulnerabilities that allow a low privileged attacker to social engineer a legitimate user with network access to execute scripts targeting the affected system or the...
CVE-2021-35499
CVE-2021-35499 affects TIBCO Nimbus, specifically the Web Reporting component in Nimbus 10.4.0 and earlier. The vulnerability is stored Cross-Site Scripting (XSS) that can be exploited by a low-privileged attacker to socially engineer a user with network access; the attack requires user interacti...