Search Results | AttackerKB

Show filters

Topics 25 Users 9,708

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

25 Total Results

Displaying 11-20 of 25

Attacker Value

Unknown

CVE-2016-5883

Disclosure Date: February 23, 2017 (last updated November 26, 2024)

IBM iNotes 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM Reference #: 1997010.

0

Attacker Value

Unknown

CVE-2016-5881

Disclosure Date: February 01, 2017 (last updated November 25, 2024)

IBM iNotes is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

0

Attacker Value

Unknown

CVE-2016-5882

Disclosure Date: February 01, 2017 (last updated November 25, 2024)

IBM iNotes is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

0

Attacker Value

Unknown

CVE-2016-2939

Disclosure Date: February 01, 2017 (last updated November 25, 2024)

IBM iNotes is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

0

Attacker Value

Unknown

CVE-2016-6113

Disclosure Date: February 01, 2017 (last updated November 25, 2024)

IBM Verse is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

0

Attacker Value

Unknown

CVE-2016-5880

Disclosure Date: February 01, 2017 (last updated November 25, 2024)

IBM iNotes is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

0

Attacker Value

Unknown

CVE-2016-2938

Disclosure Date: February 01, 2017 (last updated November 25, 2024)

IBM iNotes is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

0

Attacker Value

Unknown

CVE-2016-5884

Disclosure Date: February 01, 2017 (last updated November 25, 2024)

IBM iNotes is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

0

Attacker Value

Unknown

CVE-2016-0282

Disclosure Date: November 24, 2016 (last updated November 25, 2024)

Cross-site scripting (XSS) vulnerability in IBM iNotes before 8.5.3 FP6 IF2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, aka SPR KLYHAAHNUS.

0

Attacker Value

Unknown

CVE-2013-0590

Disclosure Date: August 27, 2013 (last updated October 05, 2023)

Cross-site scripting (XSS) vulnerability in iNotes 8.5.x in IBM Lotus Domino 8.5 before 8.5.3 FP5 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, aka SPR PTHN95XNR3, a different vulnerability than CVE-2013-0591.

0