Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm domino vulnerabilities and exploits
(subscribe to this query)
715
VMScore
CVE-2007-0977
IBM Lotus Domino R5 and R6 WebMail, with "Generate HTML for all fields" enabled, stores HTTPPassword hashes from names.nsf in a manner accessible through Readviewentries and OpenDocument requests to the defaultview view, a different vector than CVE-2005-2428.
Ibm Lotus Domino 5.0
Ibm Lotus Domino 6.0
1 EDB exploit
1 Github repository
641
VMScore
CVE-2002-0086
Buffer overflow in bindsock in Lotus Domino 5.0.4 and 5.0.7 on Linux allows local users to gain root privileges via a long (1) Notes_ExecDirectory or (2) PATH environment variable.
Ibm Lotus Domino 5.0.4
Ibm Lotus Domino 5.0.7
828
VMScore
CVE-2013-3026
Buffer overflow in the Lotus Quickr for Domino ActiveX control in qp2.cab in IBM Lotus Quickr 8.1 before FP 8.1.0.32-001a, 8.2 before FP 8.2.0.28-001a, and 8.5.1 before FP 8.5.1.39-002a for Domino allows remote malicious users to execute arbitrary code via a crafted web site.
Ibm Lotus Quickr For Domino 8.2.0
Ibm Lotus Quickr For Domino 8.5.1
Ibm Lotus Quickr For Domino 8.1.0
505
VMScore
CVE-2005-0986
NLSCCSTR.DLL in the web service in IBM Lotus Domino Server 6.5.1, 6.0.3, and possibly other versions allows remote malicious users to cause a denial of service (deep recursion and nHTTP.exe process crash) via a long GET request containing UNICODE decimal value 430 characters, whi...
Ibm Lotus Domino Server 6.5.1
Ibm Lotus Domino Server 6.0.3
1 EDB exploit
668
VMScore
CVE-2005-1101
Multiple buffer overflows in Lotus Domino Server 6.0.5 and 6.5.4 allow remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via large amounts of data in certain (1) time or (2) date fields.
Ibm Lotus Domino Server 6.0.5
Ibm Lotus Domino Server 6.5.4
383
VMScore
CVE-2005-3015
Cross-site scripting (XSS) vulnerability in IBM Lotus Domino 6.5.2 allows remote malicious users to inject arbitrary web script or HTML via the (1) BaseTarget or (2) Src parameters.
Ibm Lotus Domino 6.5.2
Ibm Lotus Domino Enterprise Server 6.5.2
383
VMScore
CVE-2014-0913
Cross-site scripting (XSS) vulnerability in IBM iNotes and Domino 8.5.3 FP6 before IF2 and 9.0.1 before FP1 allows remote malicious users to inject arbitrary web script or HTML via an e-mail message, aka SPR BFEY9GXHZE.
Ibm Lotus Domino 8.5.3.6
Ibm Lotus Inotes 9.0.1.0
Ibm Lotus Domino 9.0.1.0
Ibm Lotus Inotes 8.5.3.6
676
VMScore
CVE-2010-0919
Stack-based buffer overflow in the Lotus Domino Web Access ActiveX control in IBM Lotus iNotes (aka Domino Web Access or DWA) 6.5, 7.0 prior to 7.0.4, 8.0, 8.0.2, and prior to 229.281 for Domino 8.0.2 FP4 allows remote malicious users to execute arbitrary code via a long URL argu...
Ibm Domino Web Access 8.0.2
Ibm Domino Web Access 7.0.3
Ibm Domino Web Access 8.0
Ibm Domino Web Access 6.5
Ibm Domino Web Access 7.0
Ibm Domino Web Access 7.0.1
Ibm Domino Web Access 7.0.2
Ibm Lotus Inotes 229.201
Ibm Lotus Inotes 229.191
Ibm Lotus Inotes 229.111
Ibm Lotus Inotes 229.101
Ibm Lotus Inotes
Ibm Lotus Inotes 229.221
Ibm Lotus Inotes 229.211
Ibm Lotus Inotes 229.141
Ibm Lotus Inotes 229.131
Ibm Lotus Inotes 229.021
Ibm Lotus Inotes 229.011
Ibm Lotus Inotes 229.261
Ibm Lotus Inotes 229.181
Ibm Lotus Inotes 229.171
Ibm Lotus Inotes 229.061
440
VMScore
CVE-2006-0663
Multiple cross-site scripting (XSS) vulnerabilities in Lotus Domino iNotes Client 6.5.4 and 7.0 allow remote malicious users to inject arbitrary web script or HTML via (1) an email subject; (2) an encoded javascript URI, as demonstrated using "java script:"; or ...
Ibm Lotus Domino Inotes Client 6.5.4
Ibm Lotus Domino Inotes Client 7.0
2 EDB exploits
383
VMScore
CVE-2015-2015
Cross-site scripting (XSS) vulnerability in pubnames.ntf (aka the Directory template) in the web server in IBM Domino prior to 9.0.0 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka SPR KLYH8WBPRN.
Ibm Domino
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »