Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
domino vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2015-1981
Cross-site scripting (XSS) vulnerability in the web server in IBM Domino 8.5.x prior to 8.5.3 FP6 IF8 and 9.x prior to 9.0.1 FP4, when Webmail is enabled, allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, aka SPR KLYH9WYPR5.
Ibm Domino 8.5.0
Ibm Domino 8.5.1
Ibm Domino 8.5.2
Ibm Domino 8.5.3
Ibm Domino 9.0.1
5.8
CVSSv2
CVE-2015-2014
Open redirect vulnerability in the web server in IBM Domino 8.5 prior to 8.5.3 FP6 IF9 and 9.0 prior to 9.0.1 FP4 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks or cross-site scripting (XSS) attacks via a crafted URL, aka SPR S...
Ibm Domino 8.5.0
Ibm Domino 8.5.1
Ibm Domino 8.5.2
Ibm Domino 9.0.1
Ibm Domino 8.5.3
6.5
CVSSv2
CVE-2017-1274
IBM Domino 8.5.3, and 9.0 is vulnerable to a stack based overflow in the IMAP service that could allow an authenticated malicious user to execute arbitrary code by specifying a large mailbox name. IBM X-Force ID: 124749.
Ibm Domino 9.0.1.8
Ibm Domino 9.0.0.0
Ibm Domino 9.0.1
Ibm Domino 8.5.3
Ibm Domino 8.5.3.6
1 EDB exploit
4.3
CVSSv2
CVE-2006-4843
Cross-site scripting (XSS) vulnerability in the Active Content Filter feature in IBM Lotus Domino prior to 6.5.6 and 7.x prior to 7.0.2 FP1 allows remote malicious users to inject arbitrary web script or HTML via unspecified "code sequences" that bypass the protection s...
Ibm Lotus Domino 6.5.1
Ibm Lotus Domino 6.5.2
Ibm Lotus Domino 7.0
Ibm Lotus Domino 7.0.1
Ibm Lotus Domino 6.5.4
Ibm Lotus Domino 6.5.3
Ibm Lotus Domino 7.0.2
Ibm Lotus Domino 6.5.0
Ibm Lotus Domino 6.5.5
10
CVSSv2
CVE-2007-1675
Buffer overflow in the CRAM-MD5 authentication mechanism in the IMAP server (nimap.exe) in IBM Lotus Domino prior to 6.5.6 and 7.x prior to 7.0.2 FP1 allows remote malicious users to cause a denial of service via a long username.
Ibm Lotus Domino 6.5.0
Ibm Lotus Domino 6.5.1
Ibm Lotus Domino 6.5.5
Ibm Lotus Domino 7.0
Ibm Lotus Domino 6.5.4
Ibm Lotus Domino 6.5.2
Ibm Lotus Domino 6.5.3
Ibm Lotus Domino 7.0.1
Ibm Lotus Domino 7.0.2
3 EDB exploits
5
CVSSv2
CVE-2005-1441
Format string vulnerability in Lotus Domino 6.0.x prior to 6.0.5 and 6.5.x prior to 6.5.4 allows remote malicious users to cause a denial of service via the Notes protocol (NRPC).
Ibm Lotus Domino 6.0
Ibm Lotus Domino 6.5.3
Ibm Lotus Domino 6.0.2 Cf2
Ibm Lotus Domino 6.0.3
Ibm Lotus Domino 6.0.1
Ibm Lotus Domino 6.0.2
Ibm Lotus Domino 6.5.0
Ibm Lotus Domino 6.5.1
Ibm Lotus Domino 6.5.2
5
CVSSv2
CVE-2020-14270
HCL Domino v9, v10, v11 is susceptible to an Information Disclosure vulnerability in XPages due to improper error handling of user input. An unauthenticated attacker could exploit this vulnerability to obtain information about the XPages software running on the Domino server.
Hcltech Domino
Hcltech Domino 10.0.1
Hcltech Domino 11.0.0
Hcltech Domino 11.0.1
4.3
CVSSv2
CVE-2004-1621
NOTE: this issue has been disputed by the vendor. Cross-site scripting (XSS) vulnerability in IBM Lotus Notes R6 and Domino R6, and possibly earlier versions, allows remote malicious users to execute arbitrary web script or HTML via square brackets at the beginning and end of (1)...
Ibm Lotus Domino 6.5.2
Ibm Lotus Domino 6.0
Ibm Lotus Domino 6.0.2
Ibm Lotus Domino 6.0.2 Cf2
Ibm Lotus Domino 6.5.1
Ibm Lotus Domino 6.5.0
Ibm Lotus Domino 6.0.1
Ibm Lotus Domino 6.0.3
1 EDB exploit
3.5
CVSSv2
CVE-2013-0591
Cross-site scripting (XSS) vulnerability in iNotes 8.5.x in IBM Lotus Domino 8.5 prior to 8.5.3 FP5 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, aka SPR PTHN95XNR3, a different vulnerability than CVE-2013-0590.
Ibm Lotus Inotes 8.5.3.0
Ibm Lotus Domino 8.5.0
Ibm Lotus Domino 8.5.2.0
Ibm Lotus Domino 8.5.2.1
Ibm Lotus Domino 8.5.3.4
Ibm Lotus Domino 8.5.3.3
Ibm Lotus Inotes 8.5.0.0
Ibm Lotus Domino 8.5.1.1
Ibm Lotus Domino 8.5.1.2
Ibm Lotus Domino 8.5.2.4
Ibm Lotus Domino 8.5.3.0
Ibm Lotus Domino 8.5.0.1
Ibm Lotus Domino 8.5.1
Ibm Lotus Domino 8.5.2.2
Ibm Lotus Domino 8.5.2.3
Ibm Lotus Inotes 8.5.1.0
Ibm Lotus Inotes 8.5.2.0
Ibm Lotus Domino 8.5.1.3
Ibm Lotus Domino 8.5.1.4
Ibm Lotus Domino 8.5.1.5
Ibm Lotus Domino 8.5.3.1
Ibm Lotus Domino 8.5.3.2
3.5
CVSSv2
CVE-2013-0590
Cross-site scripting (XSS) vulnerability in iNotes 8.5.x in IBM Lotus Domino 8.5 prior to 8.5.3 FP5 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, aka SPR PTHN95XNR3, a different vulnerability than CVE-2013-0591.
Ibm Lotus Inotes 8.5.1.0
Ibm Lotus Inotes 8.5.2.0
Ibm Lotus Domino 8.5.1.3
Ibm Lotus Domino 8.5.1.4
Ibm Lotus Domino 8.5.1.5
Ibm Lotus Domino 8.5.3.1
Ibm Lotus Domino 8.5.3.2
Ibm Lotus Domino 8.5.0.1
Ibm Lotus Domino 8.5.1
Ibm Lotus Domino 8.5.2.2
Ibm Lotus Domino 8.5.2.3
Ibm Lotus Inotes 8.5.3.0
Ibm Lotus Domino 8.5.0
Ibm Lotus Domino 8.5.2.0
Ibm Lotus Domino 8.5.2.1
Ibm Lotus Domino 8.5.3.4
Ibm Lotus Domino 8.5.3.3
Ibm Lotus Inotes 8.5.0.0
Ibm Lotus Domino 8.5.1.1
Ibm Lotus Domino 8.5.1.2
Ibm Lotus Domino 8.5.2.4
Ibm Lotus Domino 8.5.3.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »