Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in webadmin.nsf in Lotus Domino R6 6.5.1 allows remote attackers to inject arbitrary web script or HTML via a Domino command in the Quick Console.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Lotus Domino HTTP webadmin.nsf Quick Console跨站脚本漏洞
Vulnerability Description
Lotus Domino服务器是一款基于WEB合作的应用程序架构,运行在Linux/Unix和Microsoft Windows操作系统平台下。 Lotus Domino服务器的webadmin.nsf中包含的'Quick Console'功能对用户提交请求缺少充分过滤,远程攻击者可以利用这个漏洞进行跨站脚本执行攻击。 'Quick Console'功能里的"Domino command"输入恶意脚本代码,当其他用户浏览此链接时可导致恶意脚本代码在用户浏览器上执行,会使用户基于验证的COOKIE信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A