Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm domino vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2008-2410
Cross-site scripting (XSS) vulnerability in the servlet engine and Web container in the Web Server service in IBM Lotus Domino prior to 7.0.3 FP1, and 8.x prior to 8.0.1, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Ibm Lotus Domino Web Server 7.0
Ibm Lotus Domino Web Server 7.0.3
Ibm Lotus Domino Web Server
Ibm Lotus Domino Web Server 7.0.1
Ibm Lotus Domino Web Server 7.0.2
668
VMScore
CVE-2002-0037
Lotus Domino Servers 5.x, 4.6x, and 4.5x allows malicious users to bypass the intended Reader and Author access list for a document's object via a Notes API call (NSFDbReadObject) that directly accesses the object.
Ibm Lotus Domino Server 4.6
Ibm Lotus Domino Server 4.5
Ibm Lotus Domino Server 5
383
VMScore
CVE-2016-0270
IBM Domino 9.0.1 Fix Pack 3 Interim Fix 2 up to and including 9.0.1 Fix Pack 5 Interim Fix 1, when using TLS and AES GCM, uses random nonce generation, which makes it easier for remote malicious users to obtain the authentication key and spoof data by leveraging the reuse of a no...
Ibm Domino 9.0.1.5
Ibm Client Application Access 1.0.0.1
Ibm Notes 9.0.1.4
Ibm Notes 9.0.1.5
Ibm Notes 9.0.1.3
Ibm Domino 9.0.1.3
Ibm Domino 9.0.1.4
1 Github repository
715
VMScore
CVE-2007-0977
IBM Lotus Domino R5 and R6 WebMail, with "Generate HTML for all fields" enabled, stores HTTPPassword hashes from names.nsf in a manner accessible through Readviewentries and OpenDocument requests to the defaultview view, a different vector than CVE-2005-2428.
Ibm Lotus Domino 5.0
Ibm Lotus Domino 6.0
1 EDB exploit
1 Github repository
383
VMScore
CVE-2013-5389
Cross-site scripting (XSS) vulnerability in iNotes in IBM Domino 8.5.3 before FP5 IF2 and 9.0 before IF5 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka SPR PTHN9AYK2X.
Ibm Lotus Domino 8.5.3.0
Ibm Lotus Domino 9.0.0.0
312
VMScore
CVE-2013-4051
Cross-site scripting (XSS) vulnerability in webadmin.nsf in Domino Web Administrator in IBM Domino 8.5 and 9.0 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2013-4055.
Ibm Lotus Domino 8.5.0
Ibm Lotus Domino 9.0.0.0
641
VMScore
CVE-2002-0086
Buffer overflow in bindsock in Lotus Domino 5.0.4 and 5.0.7 on Linux allows local users to gain root privileges via a long (1) Notes_ExecDirectory or (2) PATH environment variable.
Ibm Lotus Domino 5.0.4
Ibm Lotus Domino 5.0.7
312
VMScore
CVE-2013-4055
Cross-site scripting (XSS) vulnerability in webadmin.nsf in Domino Web Administrator in IBM Domino 8.5 and 9.0 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2013-4051.
Ibm Lotus Domino 9.0.0.0
Ibm Lotus Domino 8.5.0
890
VMScore
CVE-2010-0358
Heap-based buffer overflow in the server in IBM Lotus Domino 7 and 8.5 FP1 allows remote malicious users to cause a denial of service (daemon exit) and possibly have unspecified other impact via a long string in a crafted LDAP message to a TCP port, a different vulnerability than...
Ibm Lotus Domino 7.0
Ibm Lotus Domino 8.5.0.1
383
VMScore
CVE-2013-5388
Cross-site scripting (XSS) vulnerability in iNotes in IBM Domino 8.5.3 before FP5 IF2 and 9.0 before IF5 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka SPR PTHN9AYK5F.
Ibm Lotus Domino 9.0.0.0
Ibm Lotus Domino 8.5.3.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »