cbcvebase.
CVE-2012-0688
published 2012-03-13

CVE-2012-0688: Cross-site scripting (XSS) vulnerability in TIBCO ActiveMatrix Platform in TIBCO Silver Fabric ActiveMatrix Service Grid Distribution 3.1.3, Service Grid and…

PriorityP415medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EPSS
0.93%
56.2th percentile
Cross-site scripting (XSS) vulnerability in TIBCO ActiveMatrix Platform in TIBCO Silver Fabric ActiveMatrix Service Grid Distribution 3.1.3, Service Grid and Service Bus 3.x before 3.1.5, BusinessWorks Service Engine 5.9.x before 5.9.3, and BPM before 1.3.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected

15 ranges
VendorProductVersion rangeFixed in
tibcoactivematrix_bpm<= 1.2.0
tibcoactivematrix_bpm
tibcoactivematrix_bpm
tibcoactivematrix_bpm
tibcoactivematrix_bpm
tibcoactivematrix_businessworks_service_engine
tibcoactivematrix_businessworks_service_engine
tibcoactivematrix_businessworks_service_engine
tibcoactivematrix_service_bus
tibcoactivematrix_service_bus
tibcoactivematrix_service_grid
tibcoactivematrix_service_grid
tibcoactivematrix_service_grid
tibcoactivematrix_service_grid
tibcosilver_fabric_activematrix_service_grid_distribution
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.