Unrated severityNVD Advisory· Published Aug 29, 2013· Updated Jun 16, 2026
CVE-2013-4003
CVE-2013-4003
Description
Multiple cross-site scripting (XSS) vulnerabilities in IBM TRIRIGA Application Platform 2.x and 3.x before 3.3.1.1, and 8, allow remote authenticated users to inject arbitrary web script or HTML via (1) unspecified input to WebProcess.srv, (2) unspecified input to html/en/default/actionHandler/queryHandler.jsp, or (3) unspecified input in a portalSectionId action to html/en/default/reportTemplate/hGridTopQuery.jsp.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
11cpe:2.3:a:ibm:tririga_application_platform:*:*:*:*:*:*:*:*+ 10 more
- cpe:2.3:a:ibm:tririga_application_platform:*:*:*:*:*:*:*:*range: <=3.3.0.1
- cpe:2.3:a:ibm:tririga_application_platform:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tririga_application_platform:2.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tririga_application_platform:2.6:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tririga_application_platform:2.7:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tririga_application_platform:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tririga_application_platform:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tririga_application_platform:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tririga_application_platform:3.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tririga_application_platform:3.3.0.0:*:*:*:*:*:*:*
- (no CPE)range: 2.x, 3.x < 3.3.1.1, 8
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.