Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lotus domino vulnerabilities and exploits
(subscribe to this query)
7.1
CVSSv2
CVE-2013-4068
Buffer overflow in iNotes in IBM Domino 8.5.3 before FP5 IF1 and 9.0 before IF4 allows remote authenticated users to execute arbitrary code via unspecified vectors, aka SPR PTHN9ADPA8.
Ibm Lotus Domino 8.5.3.1
Ibm Lotus Domino 8.5.3.2
Ibm Lotus Inotes -
Ibm Lotus Domino 9.0.0.0
Ibm Lotus Domino 8.5.3.0
Ibm Lotus Domino 8.5.3.3
Ibm Lotus Domino 8.5.3.4
7.1
CVSSv2
CVE-2007-0977
IBM Lotus Domino R5 and R6 WebMail, with "Generate HTML for all fields" enabled, stores HTTPPassword hashes from names.nsf in a manner accessible through Readviewentries and OpenDocument requests to the defaultview view, a different vector than CVE-2005-2428.
Ibm Lotus Domino 5.0
Ibm Lotus Domino 6.0
1 EDB exploit
1 Github repository
6.8
CVSSv2
CVE-2010-0921
Cross-site request forgery (CSRF) vulnerability in IBM Lotus iNotes (aka Domino Web Access or DWA) prior to 229.281 for Domino 8.0.2 FP4 allows remote malicious users to hijack the authentication of unspecified victims via vectors related to lack of "XSS/CSRF Get Filter and ...
Ibm Lotus Inotes 229.201
Ibm Lotus Inotes 229.191
Ibm Lotus Inotes 229.111
Ibm Lotus Inotes 229.101
Ibm Lotus Inotes
Ibm Lotus Inotes 229.221
Ibm Lotus Inotes 229.211
Ibm Lotus Inotes 229.141
Ibm Lotus Inotes 229.131
Ibm Lotus Inotes 229.021
Ibm Lotus Inotes 229.011
Ibm Lotus Inotes 229.261
Ibm Lotus Inotes 229.251
Ibm Lotus Inotes 229.181
Ibm Lotus Inotes 229.171
Ibm Lotus Inotes 229.061
Ibm Lotus Inotes 229.051
Ibm Lotus Inotes 229.241
Ibm Lotus Inotes 229.231
Ibm Lotus Inotes 229.161
Ibm Lotus Inotes 229.151
Ibm Lotus Inotes 229.041
6.8
CVSSv2
CVE-2005-4819
Cross-site scripting (XSS) vulnerability in Lotus Domino versions prior to 6.5.4 fix pack 1 (FP1) and versions prior to 7.0 allows remote malicious users to inject arbitrary web script or HTML via unknown vectors.
Ibm Lotus Domino 6.5.4.1
Ibm Lotus Domino 6.5.4.2
Ibm Lotus Domino 6.5.4.3
Ibm Lotus Domino 6.0.5
Ibm Lotus Domino 6.5.4
6.8
CVSSv2
CVE-2004-2667
Cross-site scripting (XSS) vulnerability in Lotus Domino 6.0.x prior to 6.0.4 and 6.5.x prior to 6.5.2 allows remote malicious users to inject arbitrary web script or HTML via unknown attack vectors.
6.5
CVSSv2
CVE-2017-1274
IBM Domino 8.5.3, and 9.0 is vulnerable to a stack based overflow in the IMAP service that could allow an authenticated malicious user to execute arbitrary code by specifying a large mailbox name. IBM X-Force ID: 124749.
Ibm Domino 9.0.1.8
Ibm Domino 9.0.0.0
Ibm Domino 9.0.1
Ibm Domino 8.5.3
Ibm Domino 8.5.3.6
1 EDB exploit
6.5
CVSSv2
CVE-2011-0290
The BlackBerry Collaboration Service in Research In Motion (RIM) BlackBerry Enterprise Server (BES) 5.0.3 through MR4 for Microsoft Exchange and Lotus Domino allows remote authenticated users to log into arbitrary user accounts associated with the same organization, and send mess...
Rim Blackberry Enterprise Server 5.0.3
6.4
CVSSv2
CVE-2004-2369
Directory traversal vulnerability in webadmin.nsf for Lotus Domino R6 6.5.1 allows malicious users to create and detect directories via a .. (dot dot) in the directory creation command.
Ibm Lotus Domino 6.5.1
6.3
CVSSv2
CVE-2007-5700
The Evaluate LotusScript method in IBM Lotus Domino prior to 7.0.3 uses an incorrect security context for @ formula commands in some circumstances, which might allow remote authenticated users to gain privileges and obtain sensitive information.
Ibm Lotus Domino 6.5.6
Ibm Lotus Domino 7.0
Ibm Lotus Domino 7.0.2
Ibm Lotus Domino 6.5.5
6.2
CVSSv2
CVE-2007-5544
IBM Lotus Notes prior to 6.5.6, and 7.x prior to 7.0.3; and Domino prior to 6.5.5 FP3, and 7.x prior to 7.0.2 FP1; uses weak permissions (Everyone:Full Control) for memory mapped files (shared memory) in IPC, which allows local users to obtain sensitive information, or inject Lot...
Ibm Lotus Notes
Ibm Lotus Domino
Ibm Lotus Domino 7.0.2
Ibm Lotus Domino 6.5.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »