Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
notes vulnerabilities and exploits
(subscribe to this query)
828
VMScore
CVE-2008-1217
Unspecified vulnerability in nlnotes.dll in the client in IBM Lotus Notes 6.5, 7.0.x prior to 7.0.2 CCH, and 8.0.x prior to 8.0.1 allows remote malicious users to execute arbitrary code via a crafted attachment in an e-mail message sent over SMTP, a variant of CVE-2007-6706.
Ibm Lotus Notes 6.5
Ibm Lotus Notes 7.0.2
Ibm Lotus Notes 8.0.0
383
VMScore
CVE-2007-1941
Cross-site scripting (XSS) vulnerability in the Active Content Filter feature in Domino Web Access (DWA) in IBM Lotus Notes prior to 6.5.6 and 7.x prior to 7.0.2 FP1 allows remote malicious users to inject arbitrary web script or HTML via a multipart/related e-mail message, a dif...
Ibm Lotus Notes 6.5.5
Ibm Lotus Notes 7.0.1
Ibm Lotus Notes 7.0
445
VMScore
CVE-2006-3778
IBM Lotus Notes 6.0, 6.5, and 7.0 does not properly handle replies to e-mail messages with alternate name users when the (1) "Save As Draft" option is used or (2) a "," (comma) is inside the "phrase" portion of an address, which can cause the e-mail ...
Ibm Lotus Notes 6.0
Ibm Lotus Notes 6.5
Ibm Lotus Notes 7.0
890
VMScore
CVE-2010-1608
Stack-based buffer overflow in IBM Lotus Notes 8.5 and 8.5fp1, and possibly other versions, allows remote malicious users to execute arbitrary code via unknown attack vectors, as demonstrated by the vd_ln module in VulnDisco 9.0. NOTE: as of 20100222, this disclosure has no actio...
Ibm Lotus Notes 8.5
Ibm Lotus Notes 8.5.1
Ibm Lotus Notes 8.5.1.1
187
VMScore
CVE-2010-1487
IBM Lotus Notes 7.0, 8.0, and 8.5 stores administrative credentials in cleartext in SURunAs.exe, which allows local users to obtain sensitive information by examining this file, aka SPR JSTN837SEG.
Ibm Lotus Notes 7.0
Ibm Lotus Notes 8.0
Ibm Lotus Notes 8.5
668
VMScore
CVE-2020-7717
All versions of package dot-notes are vulnerable to Prototype Pollution via the create function.
Dot-notes Project Dot-notes
516
VMScore
CVE-2012-4824
Open redirect vulnerability in servlet/traveler in IBM Lotus Notes Traveler 8.5.3 prior to 8.5.3.3 Interim Fix 1 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirectURL parameter.
Ibm Lotus Notes Traveler 8.5.3.1
Ibm Lotus Notes Traveler 8.5.3.2
Ibm Lotus Notes Traveler 8.5.3.3
Ibm Lotus Notes Traveler 8.5.3
605
VMScore
CVE-2013-2977
Integer overflow in IBM Notes 8.5.x prior to 8.5.3 FP4 Interim Fix 1 and 9.x prior to 9.0 Interim Fix 1 on Windows, and 8.5.x prior to 8.5.3 FP5 and 9.x prior to 9.0.1 on Linux, allows remote malicious users to execute arbitrary code via a malformed PNG image in a previewed e-mai...
Ibm Lotus Notes 8.5.2.3
Ibm Lotus Notes 8.5.1
Ibm Lotus Notes 8.5.1.3
Ibm Lotus Notes 8.5.1.4
Ibm Lotus Notes 8.5.3.3
Ibm Lotus Notes 8.5.3.2
Ibm Lotus Notes 8.5.1.2
Ibm Lotus Notes 8.5.0.0
Ibm Lotus Notes 8.5.3.1
Ibm Lotus Notes 8.5.3
Ibm Lotus Notes 8.5.0.1
Ibm Lotus Notes 8.5.1.5
Ibm Lotus Notes 8.5.2.2
Ibm Lotus Notes 8.5
Ibm Lotus Notes 8.5.3.4
Ibm Lotus Notes 8.5.1.1
Ibm Lotus Notes 8.5.1.0
Ibm Lotus Notes 8.5.2.0
Ibm Lotus Notes 8.5.2.1
Ibm Lotus Notes 9.0.0.0
Ibm Lotus Notes 8.5.2.3
Ibm Lotus Notes 8.5.1
1 Github repository
890
VMScore
CVE-2020-14224
A vulnerability in the MIME message handling of the HCL Notes v9 client could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow. This could allow a remote malicious user to crash the Notes application or inject code into the system which...
Hcltech Notes 9.0
Hcltech Notes 9.0.1
801
VMScore
CVE-2020-14232
A vulnerability in the input parameter handling of HCL Notes v9 could potentially be exploited by an authenticated attacker resulting in a stack buffer overflow. This could allow the malicious user to crash the program or inject code into the system which would execute with the p...
Hcltech Notes 9.0
Hcltech Notes 9.0.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »