Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lotus domino vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2000-0022
Lotus Domino HTTP server does not properly disable anonymous access for the cgi-bin directory.
Lotus Domino Server 4.6
Lotus Domino Server 4.6.x
5
CVSSv2
CVE-2000-0023
Buffer overflow in Lotus Domino HTTP server allows remote malicious users to cause a denial of service via a long URL.
Lotus Domino Server 4.6.x
Lotus Domino Server 4.6
4.3
CVSSv2
CVE-2014-0913
Cross-site scripting (XSS) vulnerability in IBM iNotes and Domino 8.5.3 FP6 before IF2 and 9.0.1 before FP1 allows remote malicious users to inject arbitrary web script or HTML via an e-mail message, aka SPR BFEY9GXHZE.
Ibm Lotus Domino 8.5.3.6
Ibm Lotus Inotes 9.0.1.0
Ibm Lotus Domino 9.0.1.0
Ibm Lotus Inotes 8.5.3.6
7.5
CVSSv2
CVE-2005-1101
Multiple buffer overflows in Lotus Domino Server 6.0.5 and 6.5.4 allow remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via large amounts of data in certain (1) time or (2) date fields.
Ibm Lotus Domino Server 6.0.5
Ibm Lotus Domino Server 6.5.4
5
CVSSv2
CVE-2005-0986
NLSCCSTR.DLL in the web service in IBM Lotus Domino Server 6.5.1, 6.0.3, and possibly other versions allows remote malicious users to cause a denial of service (deep recursion and nHTTP.exe process crash) via a long GET request containing UNICODE decimal value 430 characters, whi...
Ibm Lotus Domino Server 6.5.1
Ibm Lotus Domino Server 6.0.3
1 EDB exploit
4.3
CVSSv2
CVE-2005-3015
Cross-site scripting (XSS) vulnerability in IBM Lotus Domino 6.5.2 allows remote malicious users to inject arbitrary web script or HTML via the (1) BaseTarget or (2) Src parameters.
Ibm Lotus Domino 6.5.2
Ibm Lotus Domino Enterprise Server 6.5.2
4.3
CVSSv2
CVE-2006-0663
Multiple cross-site scripting (XSS) vulnerabilities in Lotus Domino iNotes Client 6.5.4 and 7.0 allow remote malicious users to inject arbitrary web script or HTML via (1) an email subject; (2) an encoded javascript URI, as demonstrated using "java script:"; or ...
Ibm Lotus Domino Inotes Client 6.5.4
Ibm Lotus Domino Inotes Client 7.0
2 EDB exploits
7.5
CVSSv2
CVE-2014-3086
Unspecified vulnerability in the IBM Java Virtual Machine, as used in IBM WebSphere Real Time 3 before Service Refresh 7 FP1 and other products, allows remote malicious users to gain privileges by leveraging the ability to execute code in the context of a security manager.
Ibm Lotus Notes 8.5.3.0
Ibm Lotus Notes 9.0.1.0
Ibm Lotus Domino 9.0.1.0
Ibm Lotus Domino 8.5.3.0
Ibm Websphere Real Time 3.0
5
CVSSv2
CVE-2002-0407
htcgibin.exe in Lotus Domino server 5.0.9a and previous versions allows remote malicious users to determine the physical pathname for the server via requests that contain certain MS-DOS device names such as com5, such as (1) a request with a .pl or .java extension, or (2) a reque...
Lotus Domino
5
CVSSv2
CVE-2002-0408
htcgibin.exe in Lotus Domino server 5.0.9a and previous versions, when configured with the NoBanner setting, allows remote malicious users to determine the version number of the server via a request that generates an HTTP 500 error code, which leaks the version in a hard-coded er...
Lotus Domino
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »