Vulnerability in Ibm Lotus_quickr
CVE-2010-0715
Open redirect vulnerability in login.jsp in IBM WebSphere Portal, IBM Lotus Web Content Management (WCM), and IBM Lotus Workplace Web Content Management 5.1.0.0 through 5.1.0.5, 6.0.0.0 through 6.0.0.4, 6.0.1.0 through 6.0.1.7, 6.1.0.0 thr…
EPSS: 0.006 (70.2th percentile) — read the EPSS interpretation.
Affected products
- Ibm Lotus_quickr — versions 8.0, 8.0.0.2, 8.1.1.1
- Ibm Lotus_web_content_management — versions 6.1.0.0, 5.1.0.1, 6.0.0.0
- Ibm Lotus_workplace_web_content_management — versions 6.1.0.0, 5.1.0.1, 6.0.0.0
- Ibm Websphere_portal — versions 6.1.0.0, 5.1.0.1, 6.0.0.0
- N/a — versions n/a
References
- cve@mitre.org (Patch, x_refsource_MISC, Vendor Advisory)
- cve@mitre.org (Exploit, x_refsource_MISC)
- 20100225 Hacktics Advisory Feb10: XSS in IBM WebSphere Portal & Lotus WCM (mailing-list, x_refsource_BUGTRAQ)
- ibm-login-phishing(56602) (vdb-entry, x_refsource_XF)