4 matches found
CVE-2010-4496
CVE-2010-4496 involves multiple SQL injection vulnerabilities in the Collaborative Information Manager server, as used in TIBCO CIM before 8.1.0 and ActiveCatalog before 1.0.1. The issue allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Affected component/versions...
CVE-2010-4497
CVE-2010-4497 is an XSS vulnerability in the Collaborative Information Manager (CIM) server, as used in TIBCO CIM before 8.1.0 and ActiveCatalog before 1.0.1. The issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. The available documents do not provide d...
CVE-2010-4499
CVE-2010-4499 affects the Collaborative Information Manager server (and ActiveCatalog) prior to versions 8.1.0 and 1.0.1, respectively. The issue is a session fixation vulnerability that allows remote attackers to hijack web sessions via unspecified vectors. The provided documents consistently de...
CVE-2010-4498
The CVE-2010-4498 entry concerns a vulnerability in the TIBCO Collaborative Information Manager (CIM) server and ActiveCatalog prior to versions 8.1.0 and 1.0.1, respectively. The issue is described as an unspecified vulnerability that allows remote attackers to modify data or obtain sensitive in...