2 matches found
CVE-2010-0927
Cross-site scripting XSS vulnerability in help/readme.nsf/Header in the Help component in IBM Lotus Domino 7.x before 7.0.4 and 8.x before 8.0.2 allows remote attackers to inject arbitrary web script or HTML via the BaseTarget parameter in an OpenPage action. NOTE: this may overlap CVE-2010-0920...
CVE-2010-0927
CVE-2010-0927 describes a cross-site scripting (XSS) vulnerability in IBM Lotus Domino’s Help component (help/readme.nsf/Header). Affected are Domino 7.x prior to 7.0.4 and 8.x prior to 8.0.2; the issue allows remote attackers to inject arbitrary script/HTML via the BaseTarget parameter in an Ope...