Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2011-01-07	CVE-2010-4499	Input Validation vulnerability in TIBCO Session fixation vulnerability in Collaborative Information Manager server, as used in TIBCO Collaborative Information Manager before 8.1.0 and ActiveCatalog before 1.0.1, allows remote attackers to hijack web sessions via unspecified vectors. network tibco	4.3
2011-01-07	CVE-2010-4497	Cross-Site Scripting vulnerability in Tibco Activecatalog and Collaborative Information Manager Cross-site scripting (XSS) vulnerability in Collaborative Information Manager server, as used in TIBCO Collaborative Information Manager before 8.1.0 and ActiveCatalog before 1.0.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. network tibco CWE-79	4.3