QwikSec

Security Database

CVE

CWE

Training

CVE-2012-4848

Published: Dec 19, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Foundations Start before 1.2.2c allow remote authenticated users to inject arbitrary web script or HTML via a Webconfig Users user-attribute field, as demonstrated by the (1) First Name or (2) Last Name field.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.ibm.com/support/docview.wss?uid=swg21620319

x_refsource_CONFIRM

lotus-foundations-multiple-xss(79537)

vdb-entry

x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.