TIBCO JasperReports Server CVE-2018-18816 HTML Injection Vulnerability

Bugtraq ID: 107348
Class: Input Validation Error
CVE: CVE-2018-18816
Remote: Yes
Local: No
Published: Mar 06 2019 12:00AM
Updated: Mar 06 2019 12:00AM
Credit: The vendor reported this issue.
Vulnerable: TIBCO Jaspersoft Reporting and Analytics for AWS 7.1
TIBCO Jaspersoft for AWS with Multi-Tenancy 7.1
TIBCO JasperReports Server for ActiveMatrix BPM 6.4.3
TIBCO JasperReports Server for ActiveMatrix BPM 6.4.2
TIBCO JasperReports Server for ActiveMatrix BPM 6.4
TIBCO JasperReports Server Community Edition 7.1
TIBCO JasperReports Server 7.1
TIBCO JasperReports Server 6.4.3
TIBCO JasperReports Server 6.4.2
TIBCO JasperReports Server 6.4.1
TIBCO JasperReports Server 6.4
TIBCO JasperReports Server 6.3.4
TIBCO JasperReports Server 6.3.3
TIBCO JasperReports Server 6.3.2
TIBCO JasperReports Server 6.3.1
TIBCO JasperReports Server 6.3
Not Vulnerable: TIBCO Jaspersoft Reporting and Analytics for AWS 7.1.1
TIBCO Jaspersoft for AWS with Multi-Tenancy 7.1.1
TIBCO JasperReports Server for ActiveMatrix BPM 6.4.4
TIBCO JasperReports Server Community Edition 7.1.1
TIBCO JasperReports Server 7.1.1
TIBCO JasperReports Server 6.4.4
TIBCO JasperReports Server 6.3.5


 

Privacy Statement
Copyright 2010, SecurityFocus