CVE-2008-5011 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Quickr 8.1 before 8.1.0.2 services for Lotus Domino allow remote attackers to inject arbitrary web script or HTML via unspecified vectors possibly related to qpconfig_sample.xml aka SPR CWIR7KMPVP and THES7F9NVR a different vulnerability than CVE-2008-2163 and CVE-2008-3860.

Reference

http://osvdb.org/49777 http://osvdb.org/49778 http://secunia.com/advisories/32574 http://www.securityfocus.com/bid/32212 http://www.vupen.com/english/advisories/2008/3081 http://www-01.ibm.com/support/docview.wss?uid=swg27013341 https://exchange.xforce.ibmcloud.com/vulnerabilities/46463