Vulnerabilities > IBM > Lotus Expeditor > 6.2.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-06-22 | CVE-2012-0191 | Permissions, Privileges, and Access Controls vulnerability in IBM Lotus Expeditor The web container in IBM Lotus Expeditor 6.1.x and 6.2.x before 6.2 FP5+Security Pack does not properly perform access control for requests, which allows remote attackers to spoof a localhost request origin via crafted headers. | 5.0 |
2012-06-22 | CVE-2012-0187 | Unspecified vulnerability in IBM Lotus Expeditor Untrusted search path vulnerability in IBM Lotus Expeditor 6.1.x and 6.2.x before 6.2 FP5+Security Pack allows local users to gain privileges via a Trojan horse DLL in the current working directory. | 9.3 |
2012-06-22 | CVE-2012-0186 | Path Traversal vulnerability in IBM Lotus Expeditor Directory traversal vulnerability in the Eclipse Help component in IBM Lotus Expeditor 6.1.x and 6.2.x before 6.2 FP5+Security Pack allows remote attackers to discover the locations of files via a crafted URL. | 4.3 |