229 matches found
CVE-2023-26217
The Data Exchange Add-on component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an easily exploitable vulnerability that allows a low privileged user with import permissions and network access to the EBX server to execute arbitrary SQL statements on the affected system. Affected releases a...
CVE-2023-26215
The server component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains a vulnerability that allows an attacker with low-privileged application access to read system files that are accessible to the web server. Affected releases are TIBCO Software Inc.'s TIBCO EBX Add-ons: versions 4.5.16 and...
CVE-2023-26216
The server component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an exploitable vulnerability that allows an attacker to upload files to a directory accessible by the web server. Affected releases are TIBCO Software Inc.'s TIBCO EBX Add-ons: versions 4.5.16 and below...
CVE-2024-4576 TIBCO EBX File Inclusion Vulnerability
The component listed above contains a vulnerability that allows an attacker to traverse directories and access sensitive files, leading to unauthorized disclosure of system configuration and potentially sensitive information...
PT-2024-31756 · Tibco · Ebx
Name of the Vulnerable Software and Affected Versions: Component affected versions not specified Description: The issue allows an attacker to traverse directories and access sensitive files, leading to unauthorized disclosure of system configuration and potentially sensitive information...
TIBCO Software EBX Security Vulnerability
TIBCO Software EBX is a software from TIBCO Software, Inc. that supports integration to manage enterprise data assets. A security vulnerability exists in TIBCO Software EBX versions 5.9.25 and earlier and 6.1.3HF2 and earlier, which stems from a directory traversal issue that allows an attacker t...
TIBCO Security Advisory: June 11, 2024 - TIBCO EBX - CVE-2024-4576
TIBCO EBX File Inclusion Vulnerability Original release date: June 11, 2024 Last revised: June 12, 2024 CVE-2024-4576 Source: TIBCO Software Inc. Products Affected TIBCO EBX versions 5.9.25 and below TIBCO EBX versions 6.1.3 HF2 and below Component affected: EBX Add-ons Description The component...
CVE-2023-26222
The Web Application component of TIBCO Software Inc.'s TIBCO EBX and TIBCO Product and Service Catalog powered by TIBCO EBX contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute a stored XSS on the affected system. Affected releases are...
CVE-2023-26222
CVE-2023-26222 affects TIBCO EBX Web Application: stored XSS allowing a low-privileged, network-access attacker to execute scripts on the affected system. Affected releases: TIBCO EBX 5.9.22 and below; 6.0.13 and below; TIBCO Product and Service Catalog powered by TIBCO EBX 5.0.0 and below. Impac...
CVE-2023-26222 TIBCO EBX Cross-site Scripting (XXS) Vulnerability
The Web Application component of TIBCO Software Inc.'s TIBCO EBX and TIBCO Product and Service Catalog powered by TIBCO EBX contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute a stored XSS on the affected system. Affected releases are...
CVE-2023-26222 TIBCO EBX Cross-site Scripting (XXS) Vulnerability
The Web Application component of TIBCO Software Inc.'s TIBCO EBX and TIBCO Product and Service Catalog powered by TIBCO EBX contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute a stored XSS on the affected system. Affected releases are...
TIBCOSecurity Advisory: November 14, 2023 - TIBCO EBX -CVE-2023-26222
TIBCO EBX Cross-site Scripting XXS Vulnerability Original release date: November 14, 2023 Lastrevised: — CVE-2023-26222 Source: TIBCO SoftwareInc. Products Affected TIBCO EBX versions 5.9.22 and below TIBCO EBX versions 6.0.13 and below TIBCO Product and Service Catalog powered by TIBCO EBX...
TIBCO Security Advisory: November 14, 2023 - TIBCO EBX-CVE-2023-26222
TIBCO EBX Cross-site Scripting XXS Vulnerability Original release date: November 14, 2023 Lastrevised: — CVE-2023-26222 Source: TIBCO SoftwareInc. Products Affected TIBCO EBX versions 5.9.22 and below TIBCO EBX versions 6.0.13 and below TIBCO Product and Service Catalog powered by TIBCO EBX...
TIBCO Security Advisory: November 14, 2023 - TIBCO EBX-CVE-2023-26222
TIBCO EBX Cross-site Scripting XXS Vulnerability Original release date: November 14, 2023 Lastrevised: — CVE-2023-26222 Source: TIBCO SoftwareInc. Products Affected TIBCO EBX versions 5.9.22 and below TIBCO EBX versions 6.0.13 and below TIBCO Product and Service Catalog powered by TIBCO EBX...
PT-2023-20550 · Tibco Software · Tibco Ebx +1
Name of the Vulnerable Software and Affected Versions: TIBCO EBX versions 5.9.22 and below TIBCO EBX versions 6.0.13 and below TIBCO Product and Service Catalog powered by TIBCO EBX versions 5.0.0 and below Description: The Web Application component of TIBCO Software Inc.'s TIBCO EBX and TIBCO...
The vulnerability of TIBCO EBX asset management software lies in the lack of protective measures for SQL query structures, allowing attackers to execute arbitrary SQL queries.
The vulnerability of TIBCO EBX asset management software lies in the lack of protective measures for SQL query structures. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...
CVE-2023-26217
The Data Exchange Add-on component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an easily exploitable vulnerability that allows a low privileged user with import permissions and network access to the EBX server to execute arbitrary SQL statements on the affected system. Affected releases a...
CVE-2023-26217
The CVE concerns TIBCO EBX Add-ons Data Exchange Add-on, where a low-privilege user with import permissions and network access can trigger arbitrary SQL execution on the EBX server. Affected releases: EBX Add-ons 4.5.17 and below, 5.6.2 and below, and 6.1.0. The underlying issue is a highly explo...
CVE-2023-26217 TIBCO EBX Add-ons SQL Injection Vulnerability
The Data Exchange Add-on component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an easily exploitable vulnerability that allows a low privileged user with import permissions and network access to the EBX server to execute arbitrary SQL statements on the affected system. Affected releases a...
TIBCO Software EBX Add-ons SQL注入漏洞
TIBCO Software EBX Add-ons is an add-on from TIBCO Software, Inc. that enhances the functionality of the Tibco Ebx data management platform. A security vulnerability exists in TIBCO EBX Add-ons versions 4.5.17 and earlier, 5.6.2 and earlier, and 6.1.0, which stems from an easily exploitable...