CVE-2016-0282

🗓️ 24 Nov 2016 19:41:00Reported by ibmType

cve

cve🔗 web.nvd.nist.gov👁 45 Views

"CVE-2016-0282 XSS vulnerability in IBM iNotes before 8.5.3 FP6 IF2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.

Reporter	Title	Published	Views	Family All 8
CNVD	IBM iNotes Cross-Site Scripting Vulnerability	25 Nov 201600:00	–	cnvd
Cvelist	CVE-2016-0282	24 Nov 201619:41	–	cvelist
Tenable Nessus	IBM Domino 8.5.x < 8.5.3 Fix Pack 6 Interim Fix 15 / 9.0.x < 9.0.1 Fix Pack 7 Interim Fix 1 Multiple Vulnerabilities	15 Dec 201600:00	–	nessus
EUVD	EUVD-2016-0317	7 Oct 202500:30	–	euvd
NVD	CVE-2016-0282	24 Nov 201619:59	–	nvd
OpenVAS	IBM INotes and Domino Cross-site Scripting Vulnerability (Nov 2016)	25 Nov 201600:00	–	openvas
OSV	CVE-2016-0282	24 Nov 201619:59	–	osv
Prion	Cross site scripting	24 Nov 201619:59	–	prion

NVD

Node

ibm lotus_inotesMatch8.5.0.0

OR

ibm lotus_inotesMatch8.5.0.1

OR

ibm lotus_inotesMatch8.5.1.0

OR

ibm lotus_inotesMatch8.5.1.1

OR

ibm lotus_inotesMatch8.5.1.2

OR

ibm lotus_inotesMatch8.5.1.3

OR

ibm lotus_inotesMatch8.5.1.4

OR

ibm lotus_inotesMatch8.5.1.5

OR

ibm lotus_inotesMatch8.5.2.0

OR

ibm lotus_inotesMatch8.5.2.1

OR

ibm lotus_inotesMatch8.5.2.2

OR

ibm lotus_inotesMatch8.5.2.3

OR

ibm lotus_inotesMatch8.5.2.4

OR

ibm lotus_inotesMatch8.5.3.0

OR

ibm lotus_inotesMatch8.5.3.1

OR

ibm lotus_inotesMatch8.5.3.2

OR

ibm lotus_inotesMatch8.5.3.3

OR

ibm lotus_inotesMatch8.5.3.4

OR

ibm lotus_inotesMatch8.5.3.5

OR

ibm lotus_inotesMatch8.5.3.6

Source	Link
securitytracker	www.securitytracker.com/id/1037383
securityfocus	www.securityfocus.com/bid/94558
www-01	www.www-01.ibm.com/support/docview.wss

17 Jun 2026 00:37Current

4.9Medium risk

Vulners AI Score4.9

CVSS 23.5

CVSS 35.4

EPSS0.00802

"cve-2016-0282 xss vulnerability ibm inotes web script injection html injection"