Unrated severityNVD Advisory· Published Jan 7, 2011· Updated Apr 29, 2026

CVE-2010-4497

Description

Cross-site scripting (XSS) vulnerability in Collaborative Information Manager server, as used in TIBCO Collaborative Information Manager before 8.1.0 and ActiveCatalog before 1.0.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected products

TIBCO Software/Activecatalog
cpe:2.3:a:tibco:activecatalog:*:*:*:*:*:*:*:*
Range: <=1.0
TIBCO Software/Collaborative Information Manager
cpe:2.3:a:tibco:collaborative_information_manager:*:*:*:*:*:*:*:*
Range: <=8.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/42791nvdVendor Advisory
www.tibco.com/multimedia/cim_advisory_20110105_tcm8-12765.txtnvdVendor Advisory
www.tibco.com/services/support/advisories/cim-advisory_20100105.jspnvdVendor Advisory
www.vupen.com/english/advisories/2011/0037nvdVendor Advisory
osvdb.org/70372nvd
www.securityfocus.com/bid/45691nvd
www.securitytracker.com/idnvd
exchange.xforce.ibmcloud.com/vulnerabilities/64521nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000