Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2006-0663

Publish Date: 10 Feb 2006

                							

                source: http://www.securityfocus.com/bid/16577/info
 
IBM Lotus Domino iNotes is prone to multiple HTML- and script-injection vulnerabilities.
 
These vulnerabilities can allow attackers to carry out a variety of attacks, including theft of cookie-based authentication credentials. 

Proof of concept for the email subject field script injection:

&lt;/TITLE&gt;&lt;SCRIPT&gt;alert("Vulnerable!");&lt;/SCRIPT&gt;

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

IBM Lotus Domino 6.x/7.0 iNotes - Email Subject Cross-Site Scripting

Vulmon Search

About

Products

Connect