CVE-2005-4819Cross-site Scripting in IBM Lotus Domino

3 documents3 sources
Severity
6.8MEDIUMNVD
EPSS
1.8%
top 17.02%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Lotus Domino
Timeline
PublishedDec 31
Latest updateMay 1

Description

Cross-site scripting (XSS) vulnerability in Lotus Domino versions before 6.5.4 fix pack 1 (FP1) and versions before 7.0 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages1 packages

NVDibm/lotus_domino5 versions+4

Patches

Patch: www-1.ibm.comPatch: www-1.ibm.comPatch: www.osvdb.org

🔴Vulnerability Details

2
GHSA
GHSA-rv9q-r38w-4h48: Cross-site scripting (XSS) vulnerability in Lotus Domino versions before 62022-05-01
CVEList
CVE-2005-4819: Cross-site scripting (XSS) vulnerability in Lotus Domino versions before 62006-12-29
CVE-2005-4819 — Cross-site Scripting in IBM | cvebase