Vulnerabilities > Tibco > Activecatalog
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2011-01-07 | CVE-2010-4499 | Input Validation vulnerability in TIBCO Session fixation vulnerability in Collaborative Information Manager server, as used in TIBCO Collaborative Information Manager before 8.1.0 and ActiveCatalog before 1.0.1, allows remote attackers to hijack web sessions via unspecified vectors. network tibco | 4.3 |
| 2011-01-07 | CVE-2010-4498 | Input Validation vulnerability in TIBCO Unspecified vulnerability in Collaborative Information Manager server, as used in TIBCO Collaborative Information Manager before 8.1.0 and ActiveCatalog before 1.0.1, allows remote attackers to modify data or obtain sensitive information via a crafted URL. | 7.5 |
| 2011-01-07 | CVE-2010-4497 | Cross-Site Scripting vulnerability in Tibco Activecatalog and Collaborative Information Manager Cross-site scripting (XSS) vulnerability in Collaborative Information Manager server, as used in TIBCO Collaborative Information Manager before 8.1.0 and ActiveCatalog before 1.0.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |
| 2011-01-07 | CVE-2010-4496 | SQL Injection vulnerability in Tibco Activecatalog and Collaborative Information Manager Multiple SQL injection vulnerabilities in Collaborative Information Manager server, as used in TIBCO Collaborative Information Manager before 8.1.0 and ActiveCatalog before 1.0.1, allow remote attackers to execute arbitrary SQL commands via unspecified vectors. | 7.5 |