Vulnerabilities > Tibco > Tibbr > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-12-13 | CVE-2017-5530 | Unspecified vulnerability in Tibco Tibbr 6.0.0/6.0.1/7.0.0 The tibbr web server components of tibbr Community, and tibbr Enterprise contain SAML protocol handling errors which may allow authorized users to impersonate other users, and therefore escalate their access privileges. | 5.5 |
| 2011-03-22 | CVE-2011-1414 | Cross-Site Scripting vulnerability in Tibco Tibbr and Tibbr Service Cross-site scripting (XSS) vulnerability in the tibbr web server, as used in TIBCO tibbr 1.0.0 through 1.5.0 and tibbr Service 1.0.0 through 1.5.0, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |