CVE-2012-3302 in Lotus Dominoinfo

Summary

Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Domino 7.x and 8.x before 8.5.4 allow remote attackers to inject arbitrary web script or HTML via (1) a URL accessed during use of the Mail template in the WebMail UI or (2) a URL accessed during use of Domino Help through the Domino HTTP server.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

06/07/2012

Disclosure

08/21/2012

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-79

CVSS

8.8

EPSS

0.00266

CTI

Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-3302
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-3302
CVE Details	https://www.cvedetails.com/cve/CVE-2012-3302/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!