Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Domino 7.x and 8.x before 8.5.4 allow remote attackers to inject arbitrary web script or HTML via (1) a URL accessed during use of the Mail template in the WebMail UI or (2) a URL accessed during use of Domino Help through the Domino HTTP server.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Lotus Domino HTTP 跨站脚本漏洞
Vulnerability Description
IBM Lotus Domino(又名IBM Domino)是美国IBM公司的一套用于托管社交商务应用的平台。该平台提供一个管理客户端和Web浏览器界面,并具有易于管理、总拥有成本低、高度安全等特点。 IBM Lotus Domino 7.x版本和8.5.4之前的8.x版本中存在多跨站脚本(XSS)漏洞。远程攻击者可利用该漏洞通过(1)WebMail UI中使用Mail模板期间对URL的访问(2)通过Domino HTTP服务器使用Domino帮助期间对URL的访问,注入任意web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A