Unrated severityNVD Advisory· Published Jan 7, 2011· Updated Jun 16, 2026
CVE-2010-4497
CVE-2010-4497
Description
Cross-site scripting (XSS) vulnerability in Collaborative Information Manager server, as used in TIBCO Collaborative Information Manager before 8.1.0 and ActiveCatalog before 1.0.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected products
4cpe:2.3:a:tibco:activecatalog:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:tibco:activecatalog:*:*:*:*:*:*:*:*range: <=1.0
- (no CPE)range: <1.0.1
cpe:2.3:a:tibco:collaborative_information_manager:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:tibco:collaborative_information_manager:*:*:*:*:*:*:*:*range: <=8.0
- (no CPE)range: <8.1.0
Patches
Vulnerability mechanics
References
8- secunia.com/advisories/42791nvdVendor Advisory
- www.tibco.com/multimedia/cim_advisory_20110105_tcm8-12765.txtnvdVendor Advisory
- www.tibco.com/services/support/advisories/cim-advisory_20100105.jspnvdVendor Advisory
- www.vupen.com/english/advisories/2011/0037nvdVendor Advisory
- osvdb.org/70372nvd
- www.securityfocus.com/bid/45691nvd
- www.securitytracker.com/idnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/64521nvd
News mentions
0No linked articles in our index yet.