CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-5307

Cross-site scripting (XSS) vulnerability in servlet/traveler in IBM Lotus Notes Traveler before 8.5.3.3 Interim Fix 1, when Firefox is used, allows remote attackers to inject arbitrary web script or HTML via the redirectURL parameter, a different vulnerability than CVE-2012-4824 and CVE-2012-4825.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 42.8%

CVSS Severity

CVSS v2 Score 2.6

References

Products affected by CVE-2012-5307

Ibm » Lotus Notes Traveler » Version: 8.0

cpe:2.3:a:ibm:lotus_notes_traveler:8.0
Ibm » Lotus Notes Traveler » Version: 8.0.1

cpe:2.3:a:ibm:lotus_notes_traveler:8.0.1
Ibm » Lotus Notes Traveler » Version: 8.0.1.2

cpe:2.3:a:ibm:lotus_notes_traveler:8.0.1.2
Ibm » Lotus Notes Traveler » Version: 8.0.1.3

cpe:2.3:a:ibm:lotus_notes_traveler:8.0.1.3
Ibm » Lotus Notes Traveler » Version: 8.5.0.0

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.0.0
Ibm » Lotus Notes Traveler » Version: 8.5.0.1

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.0.1
Ibm » Lotus Notes Traveler » Version: 8.5.0.2

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.0.2
Ibm » Lotus Notes Traveler » Version: 8.5.1.1

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.1.1
Ibm » Lotus Notes Traveler » Version: 8.5.1.2

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.1.2
Ibm » Lotus Notes Traveler » Version: 8.5.1.3

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.1.3
Ibm » Lotus Notes Traveler » Version: 8.5.2.1

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.2.1
Ibm » Lotus Notes Traveler » Version: 8.5.3

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.3
Ibm » Lotus Notes Traveler » Version: 8.5.3.1

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.3.1
Ibm » Lotus Notes Traveler » Version: 8.5.3.2

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.3.2
Ibm » Lotus Notes Traveler » Version: 8.5.3.3

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.3.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-5307

Products

Pricing

Contact Us