CVE-2010-4544

IBM Lotus Notes Traveler < 8.5.1.2 - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in the servlet in IBM Lotus Notes Traveler before 8.5.1.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References (4)

[Various Sources] http://www-10.lotus.com/ldd/dominowiki.nsf/dx/Lotus_Notes_Traveler_851_FP3_Release_Notes

[Various Sources] http://www-1.ibm.com/support/docview.wss?uid=swg1LO52324

[Vendor Advisory] http://www.vupen.com/english/advisories/2010/3193

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/63977

Scores

EPSS 0.0026

EPSS Percentile 48.7%

Classification

CWE

CWE-79

Status published

Affected Products (10)

ibm/lotus_notes_traveler < 8.5.1.2

ibm/lotus_notes_traveler

n/a/n/a

Timeline

Published Dec 16, 2010

Tracked Since Feb 18, 2026