XSS Vulnerability in IBM Domino Web Server Product
CVE-2015-2015

Currently unrated

Key Information:

Vendor: IBM
Status: Domino
Vendor: CVE Published:; 23 August 2015

What is CVE-2015-2015?

A cross-site scripting (XSS) vulnerability exists in the pubnames.ntf (Directory template) of the web server in IBM Domino prior to version 9.0.0. This flaw permits remote attackers to inject arbitrary web scripts or HTML via specially crafted URLs, thereby compromising the web application’s integrity and user security. Exploitation of this vulnerability can lead to unauthorized actions being performed on behalf of users, impacting their data and privacy.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securitytracker.com/id/1033271

vdb-entryx_refsource_SECTRACK

http://www-01.ibm.com/support/docview.wss?uid=swg21963016

x_refsource_CONFIRM

Timeline

Vulnerability published
Aug 23, 2015
Vulnerability Reserved
Feb 19, 2015

JSON

IBM

What is CVE-2015-2015?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.