cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-28827,https://securityvulnerability.io/vulnerability/CVE-2021-28827,TIBCO Administrator Stored Cross Site Scripting vulnerability,"The Administration GUI component of TIBCO Software Inc.'s TIBCO Administrator - Enterprise Edition, TIBCO Administrator - Enterprise Edition, TIBCO Administrator - Enterprise Edition Distribution for TIBCO Silver Fabric, TIBCO Administrator - Enterprise Edition Distribution for TIBCO Silver Fabric, TIBCO Administrator - Enterprise Edition for z/Linux, TIBCO Administrator - Enterprise Edition for z/Linux, TIBCO Runtime Agent, TIBCO Runtime Agent, TIBCO Runtime Agent for z/Linux, and TIBCO Runtime Agent for z/Linux contains an easily exploitable vulnerability that allows an unauthenticated attacker to social engineer a legitimate user with network access to execute a Stored XSS attack targeting the affected system. A successful attack using this vulnerability requires human interaction from a person other than the attacker. Affected releases are TIBCO Software Inc.'s TIBCO Administrator - Enterprise Edition: versions 5.10.2 and below, TIBCO Administrator - Enterprise Edition: versions 5.11.0 and 5.11.1, TIBCO Administrator - Enterprise Edition Distribution for TIBCO Silver Fabric: versions 5.10.2 and below, TIBCO Administrator - Enterprise Edition Distribution for TIBCO Silver Fabric: versions 5.11.0 and 5.11.1, TIBCO Administrator - Enterprise Edition for z/Linux: versions 5.10.2 and below, TIBCO Administrator - Enterprise Edition for z/Linux: versions 5.11.0 and 5.11.1, TIBCO Runtime Agent: versions 5.10.2 and below, TIBCO Runtime Agent: versions 5.11.0 and 5.11.1, TIBCO Runtime Agent for z/Linux: versions 5.10.2 and below, and TIBCO Runtime Agent for z/Linux: versions 5.11.0 and 5.11.1.",Tibco,"Tibco Administrator - Enterprise Edition,Tibco Administrator - Enterprise Edition Distribution For Tibco Silver Fabric,Tibco Administrator - Enterprise Edition For Z/linux,Tibco Runtime Agent,Tibco Runtime Agent For Z/linux",9.6,CRITICAL,0.002139999996870756,false,,false,false,false,,,false,false,,2021-04-20T00:00:00.000Z,0
CVE-2021-28829,https://securityvulnerability.io/vulnerability/CVE-2021-28829,TIBCO Administrator CSV injection vulnerability,"The Administration GUI component of TIBCO Software Inc.'s TIBCO Administrator - Enterprise Edition, TIBCO Administrator - Enterprise Edition, TIBCO Administrator - Enterprise Edition Distribution for TIBCO Silver Fabric, TIBCO Administrator - Enterprise Edition Distribution for TIBCO Silver Fabric, TIBCO Administrator - Enterprise Edition for z/Linux, and TIBCO Administrator - Enterprise Edition for z/Linux contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute a persistent CSV injection attack from the affected system. A successful attack using this vulnerability requires human interaction from a person other than the attacker. Affected releases are TIBCO Software Inc.'s TIBCO Administrator - Enterprise Edition: versions 5.10.2 and below, TIBCO Administrator - Enterprise Edition: versions 5.11.0 and 5.11.1, TIBCO Administrator - Enterprise Edition Distribution for TIBCO Silver Fabric: versions 5.10.2 and below, TIBCO Administrator - Enterprise Edition Distribution for TIBCO Silver Fabric: versions 5.11.0 and 5.11.1, TIBCO Administrator - Enterprise Edition for z/Linux: versions 5.10.2 and below, and TIBCO Administrator - Enterprise Edition for z/Linux: versions 5.11.0 and 5.11.1.",Tibco,"Tibco Administrator - Enterprise Edition,Tibco Administrator - Enterprise Edition Distribution For Tibco Silver Fabric,Tibco Administrator - Enterprise Edition For Z/linux",6.5,MEDIUM,0.0010400000028312206,false,,false,false,false,,,false,false,,2021-04-20T00:00:00.000Z,0
CVE-2021-28828,https://securityvulnerability.io/vulnerability/CVE-2021-28828,TIBCO Administrator SQL injection vulnerability,"The Administration GUI component of TIBCO Software Inc.'s TIBCO Administrator - Enterprise Edition, TIBCO Administrator - Enterprise Edition, TIBCO Administrator - Enterprise Edition Distribution for TIBCO Silver Fabric, TIBCO Administrator - Enterprise Edition Distribution for TIBCO Silver Fabric, TIBCO Administrator - Enterprise Edition for z/Linux, and TIBCO Administrator - Enterprise Edition for z/Linux contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute a SQL injection attack on the affected system. Affected releases are TIBCO Software Inc.'s TIBCO Administrator - Enterprise Edition: versions 5.10.2 and below, TIBCO Administrator - Enterprise Edition: versions 5.11.0 and 5.11.1, TIBCO Administrator - Enterprise Edition Distribution for TIBCO Silver Fabric: versions 5.10.2 and below, TIBCO Administrator - Enterprise Edition Distribution for TIBCO Silver Fabric: versions 5.11.0 and 5.11.1, TIBCO Administrator - Enterprise Edition for z/Linux: versions 5.10.2 and below, and TIBCO Administrator - Enterprise Edition for z/Linux: versions 5.11.0 and 5.11.1.",Tibco,"Tibco Administrator - Enterprise Edition,Tibco Administrator - Enterprise Edition Distribution For Tibco Silver Fabric,Tibco Administrator - Enterprise Edition For Z/linux",7.6,HIGH,0.0008699999889358878,false,,false,false,false,,,false,false,,2021-04-20T00:00:00.000Z,0
CVE-2018-5433,https://securityvulnerability.io/vulnerability/CVE-2018-5433,XML eXternal Entity Expansion Vulnerabilities with TIBCO Administrator,"The TIBCO Administrator server component of TIBCO Software Inc.'s TIBCO Administrator - Enterprise Edition, and TIBCO Administrator - Enterprise Edition for z/Linux contains vulnerabilities wherein a malicious user could perform XML external entity expansion (XXE) attacks to disclose host machine information. Affected releases are TIBCO Software Inc.'s TIBCO Administrator - Enterprise Edition: versions up to and including 5.10.0, and TIBCO Administrator - Enterprise Edition for z/Linux: versions up to and including 5.9.1.",Tibco,"Tibco Administrator - Enterprise Edition,Tibco Administrator - Enterprise Edition For Z/linux",6.5,MEDIUM,0.000590000010561198,false,,false,false,false,,,false,false,,2018-06-13T13:29:00.000Z,0
CVE-2018-5432,https://securityvulnerability.io/vulnerability/CVE-2018-5432,TIBCO Administrator - Enterprise Edition Cross-Site Scripting Vulnerability,"The TIBCO Administrator server component of of TIBCO Software Inc.'s TIBCO Administrator - Enterprise Edition, and TIBCO Administrator - Enterprise Edition for z/Linux contains multiple vulnerabilities wherein a malicious user could theoretically perform cross-site scripting (XSS) attacks by way of manipulating artifacts prior to uploading them. Affected releases are TIBCO Software Inc.'s TIBCO Administrator - Enterprise Edition: versions up to and including 5.10.0, and TIBCO Administrator - Enterprise Edition for z/Linux: versions up to and including 5.9.1.",Tibco,"Tibco Administrator - Enterprise Edition,Tibco Administrator - Enterprise Edition For Z/linux",8,HIGH,0.0004799999878741801,false,,false,false,false,,,false,false,,2018-06-13T13:29:00.000Z,0