Vulnerabilities > Tibco > Businessconnect Trading Community Management > Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2022-05-18	CVE-2022-22777	Cross-site Scripting vulnerability in Tibco Businessconnect Trading Community Management The Web Server component of TIBCO Software Inc.'s TIBCO BusinessConnect Trading Community Management contains easily exploitable Reflected Cross Site Scripting (XSS) vulnerabilities that allow an unauthenticated attacker with network access to execute scripts targeting the affected system or the victim's local system. network tibco CWE-79	4.3
2022-05-18	CVE-2022-22778	Cross-Site Request Forgery (CSRF) vulnerability in Tibco Businessconnect Trading Community Management The Web Server component of TIBCO Software Inc.'s TIBCO BusinessConnect Trading Community Management contains an easily exploitable vulnerability that allows an unauthenticated attacker with network access to execute Cross-Site Request Forgery (CSRF) on the affected system. network tibco CWE-352	6.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.