CVE-2018-5432

The TIBCO Administrator server component of of TIBCO Software Inc.’s TIBCO Administrator – Enterprise Edition, and TIBCO Administrator – Enterprise Edition for z/Linux contains multiple vulnerabilities wherein a malicious user could theoretically perform cross-site scripting (XSS) attacks by way of manipulating artifacts prior to uploading them. Affected releases are TIBCO Software Inc.’s TIBCO Administrator – Enterprise Edition: versions up to and including 5.10.0, and TIBCO Administrator – Enterprise Edition for z/Linux: versions up to and including 5.9.1.

Source: CVE-2018-5432