EIP-2026-103934
PRE-CVEIBM Lotus Notes 6.5.6 - 'names.nsf' Open Redirection
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-103934. PoCs published by Lament.
AI-analyzed exploit summary The provided text describes an open-redirection vulnerability in IBM Lotus Notes due to improper input sanitization. It includes an example POST request demonstrating how the 'RedirectTo' parameter can be manipulated to redirect users to an arbitrary URL.
Description
IBM Lotus Notes 6.5.6 - 'names.nsf' Open Redirection
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Lament · textremotemultiple
https://www.exploit-db.com/exploits/33774
The provided text describes an open-redirection vulnerability in IBM Lotus Notes due to improper input sanitization. It includes an example POST request demonstrating how the 'RedirectTo' parameter can be manipulated to redirect users to an arbitrary URL.
Classification
Writeup 90%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target:
IBM Lotus Notes 6.x
No auth needed
Prerequisites:
User interaction required to trigger the redirect
MITRE ATT&CK
devstral-2 · analyzed Feb 18, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026