Lucene search
HistoryOct 03, 2022 - 4:21 p.m.
CVE-2010-0920
ibm
lotus
inotes
xss
vulnerability
domino
web access
nvd
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
48.8%
Cross-site scripting (XSS) vulnerability in IBM Lotus iNotes (aka Domino Web Access or DWA) before 229.281 for Domino 8.0.2 FP4 allows remote attackers to inject arbitrary web script or HTML via vectors related to lack of “XSS/CSRF Get Filter and Referer Check fixes.”
Affected configurations
Node
ibmlotus_inotesRange≤229.271
ORibmlotus_inotesMatch229.011
ORibmlotus_inotesMatch229.021
ORibmlotus_inotesMatch229.031
ORibmlotus_inotesMatch229.041
ORibmlotus_inotesMatch229.051
ORibmlotus_inotesMatch229.061
ORibmlotus_inotesMatch229.101
ORibmlotus_inotesMatch229.111
ORibmlotus_inotesMatch229.131
ORibmlotus_inotesMatch229.141
ORibmlotus_inotesMatch229.151
ORibmlotus_inotesMatch229.161
ORibmlotus_inotesMatch229.171
ORibmlotus_inotesMatch229.181
ORibmlotus_inotesMatch229.191
ORibmlotus_inotesMatch229.201
ORibmlotus_inotesMatch229.211
ORibmlotus_inotesMatch229.221
ORibmlotus_inotesMatch229.231
ORibmlotus_inotesMatch229.241
ORibmlotus_inotesMatch229.251
ORibmlotus_inotesMatch229.261
ibmlotus_dominoMatch8.0.2.4
Related
nvd
nvd
CVE-2010-0920
2010-03-03 19:30:00
CVE-2010-0927
2010-03-05 17:30:00
prion
prion
Cross site scripting
2010-03-03 19:30:00
Cross site scripting
2010-03-05 17:30:00
cvelist
cvelist
CVE-2010-0920
2022-10-03 16:21:13
CVE-2010-0927
2022-10-03 16:21:11
cve
cve
CVE-2010-0927
2022-10-03 16:21:11
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
48.8%
Related for CVE-2010-0920