XSS in Ibm Lotus_notes_traveler

CVE-2010-4544

Cross-site scripting (XSS) vulnerability in the servlet in IBM Lotus Notes Traveler before 8.5.1.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.003 (49.3th percentile) — read the EPSS interpretation.

Affected products

Ibm Lotus_notes_traveler — versions 8.5.0.1, 8.5.0.0, 8.0
N/a — versions n/a

Weakness classification (CWE)

CWE-79 — Cross-site Scripting

References

ADV-2010-3193 (vdb-entry, x_refsource_VUPEN, Vendor Advisory)
cve@mitre.org (x_refsource_CONFIRM)
LO52324 (vendor-advisory, x_refsource_AIXAPAR)
lotus-notes-traveler-servlet-xss(63977) (vdb-entry, x_refsource_XF)