Multiple XSS Vulnerabilities in IBM Lotus Notes Traveler
CVE-2012-4825
Currently unrated
Summary
IBM Lotus Notes Traveler contains multiple cross-site scripting (XSS) vulnerabilities that allow remote attackers to inject arbitrary web scripts or HTML. These vulnerabilities are exposed through the userId and address parameters in the getClientConfigFile action, enabling malicious activities that could compromise user data and system integrity. Ensuring that systems are updated and implementing sanitization measures for user inputs are crucial for mitigating associated risks.
References
Timeline
Vulnerability Reserved
Vulnerability published