CVE-2011-3132: XSS
First published: Fri Sep 02 2011(Updated: )
Cross-site scripting (XSS) vulnerability in TIBCO Spotfire Server 3.0.x before 3.0.2, 3.1.x before 3.1.2, 3.2.x before 3.2.1, and 3.3.x before 3.3.1, and Spotfire Analytics Server before 10.1.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| TIBCO Spotfire Server | =3.0.0 | |
| TIBCO Spotfire Server | =3.3.0 | |
| TIBCO Spotfire Server | =3.1.1 | |
| TIBCO Spotfire Server | =3.1.0 | |
| Tibco Spotfire Analytics Server | <=10.0.1 | |
| TIBCO Spotfire Server | =3.2.0 | |
| Tibco Spotfire Analytics Server | =10.0.0 | |
| TIBCO Spotfire Server | =3.0.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/author
- agent/type
- agent/event
- agent/weakness
- agent/references
- agent/description
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/tibco
- canonical/tibco spotfire server
- version/tibco spotfire server/3.0.0
- version/tibco spotfire server/3.3.0
- version/tibco spotfire server/3.1.1
- version/tibco spotfire server/3.1.0
- canonical/tibco spotfire analytics server
- version/tibco spotfire analytics server/10.0.1
- version/tibco spotfire server/3.2.0
- version/tibco spotfire analytics server/10.0.0
- version/tibco spotfire server/3.0.1