Cross-site scripting (XSS) vulnerability in the Active Content Filter feature in Domino Web Access (DWA) in IBM Lotus Notes prior to 6.5.6 and 7.x prior to 7.0.2 FP1 allows remote malicious users to inject arbitrary web script or HTML via a multipart/related e-mail message, a different issue than CVE-2006-4843.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm lotus notes 6.5.5 |
||
ibm lotus notes 7.0.1 |
||
ibm lotus notes 7.0 |