Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lotus domino vulnerabilities and exploits
(subscribe to this query)
534
VMScore
CVE-2013-4050
Cross-site request forgery (CSRF) vulnerability in webadmin.nsf in Domino Web Administrator in IBM Domino 8.5 and 9.0 allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors.
Ibm Lotus Domino 9.0.0.0
Ibm Lotus Domino 8.5.0
534
VMScore
CVE-2013-0489
Cross-site request forgery (CSRF) vulnerability in webadmin.nsf (aka the Web Administrator client) in IBM Domino 8.5.x allows remote authenticated users to hijack the authentication of administrators.
Ibm Lotus Domino 8.5.1
Ibm Lotus Domino 8.5.1.5
Ibm Lotus Domino 8.5.3.0
Ibm Lotus Domino 8.5.2.0
Ibm Lotus Domino 8.5.2.3
Ibm Lotus Domino 8.5.3.1
Ibm Lotus Domino 8.5.2.1
Ibm Lotus Domino 8.5.2.2
Ibm Lotus Domino 8.5.2.4
Ibm Lotus Domino 8.5.1.3
Ibm Lotus Domino 8.5.0.1
Ibm Lotus Domino 8.5.1.4
Ibm Lotus Domino 8.5.1.2
Ibm Lotus Domino 8.5.3.2
Ibm Lotus Domino 8.5.1.1
Ibm Lotus Domino 8.5.0
530
VMScore
CVE-2006-5835
The Notes Remote Procedure Call (NRPC) protocol in IBM Lotus Notes Domino prior to 6.5.5 FP2 and 7.x prior to 7.0.2 does not require authentication to perform user lookups, which allows remote malicious users to obtain the user ID file.
Ibm Lotus Notes 5.0.3
Ibm Lotus Notes 6.0
Ibm Lotus Notes 6.0.1
Ibm Lotus Notes 6.5.2
Ibm Lotus Notes 6.5.3
Ibm Lotus Notes 6.0.2
Ibm Lotus Notes 6.0.3
Ibm Lotus Notes 6.5.4
Ibm Lotus Notes 6.5.5
Ibm Lotus Notes 6.0.4
Ibm Lotus Notes 6.0.5
Ibm Lotus Notes 7.0
Ibm Lotus Notes 7.0.1
Ibm Lotus Notes 5.0.12
Ibm Lotus Notes 6.5
Ibm Lotus Notes 6.5.1
2 Nmap scripts
516
VMScore
CVE-2012-4842
Open redirect vulnerability in the web server in IBM Lotus Domino 8.5.x up to and including 8.5.3 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
Ibm Lotus Domino 8.5.1.2
Ibm Lotus Domino 8.5.1
Ibm Lotus Domino 8.5.2.4
Ibm Lotus Domino 8.5.3.0
Ibm Lotus Domino 8.5.1.3
Ibm Lotus Domino 8.5.0
Ibm Lotus Domino 8.5.2.2
Ibm Lotus Domino 8.5.2.1
Ibm Lotus Domino 8.5.0.1
Ibm Lotus Domino 8.5.1.5
Ibm Lotus Domino 8.5.2.0
Ibm Lotus Domino 8.5.2.3
Ibm Lotus Domino 8.5.1.1
Ibm Lotus Domino 8.5.1.4
510
VMScore
CVE-2005-2428
Lotus Domino R5 and R6 WebMail, with "Generate HTML for all fields" enabled, stores sensitive data from names.nsf in hidden form fields, which allows remote malicious users to read the HTML source to obtain sensitive information such as (1) the password hash in the HTTP...
Ibm Lotus Domino 5.0
Ibm Lotus Domino 6.0
Ibm Lotus Domino 6.5
2 EDB exploits
1 Github repository
510
VMScore
CVE-2001-0009
Directory traversal vulnerability in Lotus Domino 5.0.5 web server allows remote malicious users to read arbitrary files via a .. attack.
Lotus Domino Server 5.0.2
Lotus Domino Server 5.0.3
Lotus Domino Server 5.0.5
Lotus Domino Server 5.0.6
2 EDB exploits
505
VMScore
CVE-2005-2175
The web interface for Lotus Notes mail automatically processes HTML in an attachment without prompting the user to save or open it, which makes it easier for remote malicious users to conduct web-based attacks and steal cookies.
Ibm Lotus Notes
1 EDB exploit
505
VMScore
CVE-2005-0986
NLSCCSTR.DLL in the web service in IBM Lotus Domino Server 6.5.1, 6.0.3, and possibly other versions allows remote malicious users to cause a denial of service (deep recursion and nHTTP.exe process crash) via a long GET request containing UNICODE decimal value 430 characters, whi...
Ibm Lotus Domino Server 6.5.1
Ibm Lotus Domino Server 6.0.3
1 EDB exploit
505
VMScore
CVE-2004-0668
Web Access in Lotus Domino 6.5.1 allows remote malicious users to cause a denial of service (server crash) via a large e-mail message, as demonstrated using a large image attachment.
1 EDB exploit
505
VMScore
CVE-2002-2191
Lotus Domino 5.0.9a and previous versions, even when configured with the 'DominoNoBanner=1' option, allows remote malicious users to obtain potential sensitive information such as the version via a request for a non-existent .nsf database, which leaks the version in the...
Lotus Domino 5.0.8
Lotus Domino 5.0.9
Lotus Domino 5.0.9a
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »