Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2008-3860
Modified
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-29 Aug, 2008 | 16:41
Updated At-23 Apr, 2026 | 00:35

Multiple cross-site scripting (XSS) vulnerabilities (1) in the WYSIWYG editors, (2) during local group creation, (3) during HTML redirects, (4) in the HTML import, (5) in the Rich text editor, and (6) in link-page in IBM Lotus Quickr 8.1 services for Lotus Domino before Hotfix 15 allow remote attackers to inject arbitrary web script or HTML via unknown vectors, including (7) the Imported Page. NOTE: the vulnerability in the WYSIWYG editors may exist because of an incomplete fix for CVE-2008-2163.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.04.3MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
Type: Primary
Version: 2.0
Base score: 4.3
Base severity: MEDIUM
Vector:
AV:N/AC:M/Au:N/C:N/I:P/A:N
CPE Matches
IBM Corporation
ibm
>>aix>>*
cpe:2.3:o:ibm:aix:*:*:*:*:*:*:*:*
IBM Corporation
ibm
>>i5os>>*
cpe:2.3:o:ibm:i5os:*:*:*:*:*:*:*:*
Microsoft Corporation
microsoft
>>windows_nt>>*
cpe:2.3:o:microsoft:windows_nt:*:*:*:*:*:*:*:*
IBM Corporation
ibm
>>lotus_quickr>>8.1
cpe:2.3:a:ibm:lotus_quickr:8.1:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-79Primarynvd@nist.gov
CWE ID: CWE-79
Type: Primary
Source: nvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://osvdb.org/49772cve@mitre.org
N/A
http://osvdb.org/49776cve@mitre.org
N/A
http://secunia.com/advisories/31634cve@mitre.org
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg27013341cve@mitre.org
N/A
http://www.securitytracker.com/id?1020762cve@mitre.org
N/A
http://www.vupen.com/english/advisories/2008/2444cve@mitre.org
N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/44694cve@mitre.org
N/A
http://osvdb.org/49772af854a3a-2127-422b-91ae-364da2661108
N/A
http://osvdb.org/49776af854a3a-2127-422b-91ae-364da2661108
N/A
http://secunia.com/advisories/31634af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg27013341af854a3a-2127-422b-91ae-364da2661108
N/A
http://www.securitytracker.com/id?1020762af854a3a-2127-422b-91ae-364da2661108
N/A
http://www.vupen.com/english/advisories/2008/2444af854a3a-2127-422b-91ae-364da2661108
N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/44694af854a3a-2127-422b-91ae-364da2661108
N/A
Hyperlink: http://osvdb.org/49772
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://osvdb.org/49776
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://secunia.com/advisories/31634
Source: cve@mitre.org
Resource:
Vendor Advisory
Hyperlink: http://www-01.ibm.com/support/docview.wss?uid=swg27013341
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.securitytracker.com/id?1020762
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.vupen.com/english/advisories/2008/2444
Source: cve@mitre.org
Resource: N/A
Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/44694
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://osvdb.org/49772
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://osvdb.org/49776
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://secunia.com/advisories/31634
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Vendor Advisory
Hyperlink: http://www-01.ibm.com/support/docview.wss?uid=swg27013341
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://www.securitytracker.com/id?1020762
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: http://www.vupen.com/english/advisories/2008/2444
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/44694
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A
Change History
0Changes found
Details not found