Show filters
18 Total Results
Displaying 11-18 of 18
Sort by:
Attacker Value
Unknown

CVE-2016-5884

Disclosure Date: February 01, 2017 (last updated November 25, 2024)
IBM iNotes is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
0
0
Attacker Value
Unknown

CVE-2016-0282

Disclosure Date: November 24, 2016 (last updated November 25, 2024)
Cross-site scripting (XSS) vulnerability in IBM iNotes before 8.5.3 FP6 IF2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, aka SPR KLYHAAHNUS.
0
0
Attacker Value
Unknown

CVE-2013-0590

Disclosure Date: August 27, 2013 (last updated October 05, 2023)
Cross-site scripting (XSS) vulnerability in iNotes 8.5.x in IBM Lotus Domino 8.5 before 8.5.3 FP5 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, aka SPR PTHN95XNR3, a different vulnerability than CVE-2013-0591.
0
0
Attacker Value
Unknown

CVE-2013-0595

Disclosure Date: August 27, 2013 (last updated October 05, 2023)
Multiple cross-site scripting (XSS) vulnerabilities in iNotes 8.5.x in IBM Lotus Domino 8.5 before 8.5.3 FP5 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka SPR PTHN95XNR3.
0
0
Attacker Value
Unknown

CVE-2013-0591

Disclosure Date: August 27, 2013 (last updated October 05, 2023)
Cross-site scripting (XSS) vulnerability in iNotes 8.5.x in IBM Lotus Domino 8.5 before 8.5.3 FP5 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, aka SPR PTHN95XNR3, a different vulnerability than CVE-2013-0590.
0
0
Attacker Value
Unknown

CVE-2013-0525

Disclosure Date: March 26, 2013 (last updated October 05, 2023)
Multiple cross-site scripting (XSS) vulnerabilities in IBM iNotes 8.5.x allow local users to inject arbitrary web script or HTML via a shared mail file, aka SPR DKEN8PDNTX.
0
0
Attacker Value
Unknown

CVE-2012-5943

Disclosure Date: March 26, 2013 (last updated October 05, 2023)
Cross-site scripting (XSS) vulnerability in IBM iNotes 8.5.x before 8.5.3 FP4 allows user-assisted remote attackers to inject arbitrary web script or HTML via vectors involving mail, aka SPR JDOE8ZZS9.
0
0
Attacker Value
Unknown

CVE-2012-2175

Disclosure Date: June 20, 2012 (last updated October 04, 2023)
Buffer overflow in the Attachment_Times method in a certain ActiveX control in dwa85W.dll in IBM Lotus iNotes 8.5.x before 8.5.3 FP2 allows remote attackers to execute arbitrary code via a long argument.
0
0
View More Topics  < Previous