Multiple cross-site scripting (XSS) vulnerabilities in IBM TRIRIGA Application Platform 2.x and 3.x prior to 3.3, and 8, allow remote malicious users to inject arbitrary web script or HTML via vectors involving (1) WebProcess.srv, (2) the html/en/default/ directory, (3) Widget/resource, (4) birt/frameset, or (5) ganttlib/gantt-jws.jnlp.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm tririga application platform 3.2 |
||
ibm tririga application platform 3.2.1 |
||
ibm tririga application platform 2.6 |
||
ibm tririga application platform 2.5 |
||
ibm tririga application platform 2.1 |
||
ibm tririga application platform 8.0 |
||
ibm tririga application platform 3.1 |
||
ibm tririga application platform 3.0 |
||
ibm tririga application platform 2.7 |