Cross-site scripting (XSS) vulnerability in the tibbr web server, as used in TIBCO tibbr 1.0.0 through 1.5.0 and tibbr Service 1.0.0 through 1.5.0, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
https://exchange.xforce.ibmcloud.com/vulnerabilities/66113
http://www.vupen.com/english/advisories/2011/0687
http://www.tibco.com/services/support/advisories/tibbr-tibbr-service-advisory_20110315.jsp
http://www.tibco.com/multimedia/tibbr_advisory_20110315_tcm8-13474.txt
http://www.securityfocus.com/bid/46891