Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lotus domino vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2000-0022
Lotus Domino HTTP server does not properly disable anonymous access for the cgi-bin directory.
Lotus Domino Server 4.6
Lotus Domino Server 4.6.x
NA
CVE-2000-0023
Buffer overflow in Lotus Domino HTTP server allows remote malicious users to cause a denial of service via a long URL.
Lotus Domino Server 4.6.x
Lotus Domino Server 4.6
NA
CVE-2014-0913
Cross-site scripting (XSS) vulnerability in IBM iNotes and Domino 8.5.3 FP6 before IF2 and 9.0.1 before FP1 allows remote malicious users to inject arbitrary web script or HTML via an e-mail message, aka SPR BFEY9GXHZE.
Ibm Lotus Domino 8.5.3.6
Ibm Lotus Inotes 9.0.1.0
Ibm Lotus Domino 9.0.1.0
Ibm Lotus Inotes 8.5.3.6
NA
CVE-2005-0986
NLSCCSTR.DLL in the web service in IBM Lotus Domino Server 6.5.1, 6.0.3, and possibly other versions allows remote malicious users to cause a denial of service (deep recursion and nHTTP.exe process crash) via a long GET request containing UNICODE decimal value 430 characters, whi...
Ibm Lotus Domino Server 6.5.1
Ibm Lotus Domino Server 6.0.3
1 EDB exploit
NA
CVE-2005-1101
Multiple buffer overflows in Lotus Domino Server 6.0.5 and 6.5.4 allow remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via large amounts of data in certain (1) time or (2) date fields.
Ibm Lotus Domino Server 6.0.5
Ibm Lotus Domino Server 6.5.4
NA
CVE-2005-3015
Cross-site scripting (XSS) vulnerability in IBM Lotus Domino 6.5.2 allows remote malicious users to inject arbitrary web script or HTML via the (1) BaseTarget or (2) Src parameters.
Ibm Lotus Domino 6.5.2
Ibm Lotus Domino Enterprise Server 6.5.2
NA
CVE-2006-0663
Multiple cross-site scripting (XSS) vulnerabilities in Lotus Domino iNotes Client 6.5.4 and 7.0 allow remote malicious users to inject arbitrary web script or HTML via (1) an email subject; (2) an encoded javascript URI, as demonstrated using "java script:"; or ...
Ibm Lotus Domino Inotes Client 6.5.4
Ibm Lotus Domino Inotes Client 7.0
2 EDB exploits
NA
CVE-2014-3086
Unspecified vulnerability in the IBM Java Virtual Machine, as used in IBM WebSphere Real Time 3 before Service Refresh 7 FP1 and other products, allows remote malicious users to gain privileges by leveraging the ability to execute code in the context of a security manager.
Ibm Lotus Notes 8.5.3.0
Ibm Lotus Notes 9.0.1.0
Ibm Lotus Domino 9.0.1.0
Ibm Lotus Domino 8.5.3.0
Ibm Websphere Real Time 3.0
NA
CVE-2002-0407
htcgibin.exe in Lotus Domino server 5.0.9a and previous versions allows remote malicious users to determine the physical pathname for the server via requests that contain certain MS-DOS device names such as com5, such as (1) a request with a .pl or .java extension, or (2) a reque...
Lotus Domino
NA
CVE-2002-0408
htcgibin.exe in Lotus Domino server 5.0.9a and previous versions, when configured with the NoBanner setting, allows remote malicious users to determine the version number of the server via a request that generates an HTTP 500 error code, which leaks the version in a hard-coded er...
Lotus Domino
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »