HIGH🇬🇧 English

CVE-2023-37539

CVSS 8.4v3.1pub. 2024-06-06upd. 2024-11-21

The Domino Catalog template is susceptible to a Stored Cross-Site Scripting (XSS) vulnerability. An attacker with the ability to edit documents in the catalog application/database created from this template can embed a cross site scripting attack. The attack would be activated by an end user clicking it.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
  • Hcltech Domino

    APP
    Hcltech
    11.012.014.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
XSS
CWE
Referencje

Powiązane podatności

CVE-2022-44750CRITICAL9.8ten sam produkt

HCL Domino is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView. ...

CVE-2022-44752CRITICAL9.8ten sam produkt

HCL Domino is susceptible to a stack based buffer overflow vulnerability in wp6sr.dll in Micro Focus KeyView. ...

CVE-2022-44754CRITICAL9.8ten sam produkt

HCL Domino is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView. ...

CVE-2020-14244CRITICAL9.8ten sam produkt

A vulnerability in the MIME message handling of the Domino server (versions 9 and 10) could potentially be exp...

CVE-2020-14260CRITICAL9.8ten sam produkt

HCL Domino is susceptible to a Buffer Overflow vulnerability in DXL due to improper validation of user input. ...

CVE-2023-37539 — HIGH 8.4 | CVEbaza.pl