Описание
Cross-site scripting (XSS) vulnerability in Integration Matters nJAMS 3 before 3.2.0 Hotfix 7, as used in TIBCO BusinessWorks Process Monitor through 3.0.1.3 and other products, allows remote authenticated administrators to inject arbitrary web script or HTML via the users management panel of the web interface.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:integrationmatters:njams:3:*:*:*:*:*:*:*
Конфигурация 2Версия до 3.0.1.3 (включая)
cpe:2.3:a:tibco:businessworks_process_monitor:*:*:*:*:*:*:*:*
EPSS
Процентиль: 40%
0.00179
Низкий
4.8 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 4.8
github
больше 3 лет назад
Cross-site scripting (XSS) vulnerability in Integration Matters nJAMS 3 before 3.2.0 Hotfix 7, as used in TIBCO BusinessWorks Process Monitor through 3.0.1.3 and other products, allows remote authenticated administrators to inject arbitrary web script or HTML via the users management panel of the web interface.
EPSS
Процентиль: 40%
0.00179
Низкий
4.8 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79