{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-06T09:32:43.657","vulnerabilities":[{"cve":{"id":"CVE-2011-1106","sourceIdentifier":"cve@mitre.org","published":"2011-03-01T23:00:03.190","lastModified":"2026-04-29T01:13:23.040","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in stcenter.nsf in the server in IBM Lotus Sametime allows remote attackers to inject arbitrary web script or HTML via the authReasonCode parameter in an OpenDatabase action."},{"lang":"es","value":"Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en stcenter.nsf en el servidor de IBM Lotus Sametime, permite a atacantes remotos inyectar secuencias de comandos web o HTML a través del parámetro authReasonCode en una acción OpenDatabase."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:lotus_sametime:*:*:*:*:*:*:*:*","matchCriteriaId":"3AB3B1EB-D028-4416-886F-77D784CBDB91"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:lotus_sametime:8.0:*:*:*:*:*:*:*","matchCriteriaId":"6200D391-5317-4CF5-828F-5FB68C3B45E2"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:lotus_sametime:8.0.1:*:*:*:*:*:*:*","matchCriteriaId":"71EB8C02-5EA3-4E16-8834-064AE4208BAA"}]}]}],"references":[{"url":"http://archives.neohapsis.com/archives/bugtraq/2011-02/0217.html","source":"cve@mitre.org","tags":["Exploit"]},{"url":"http://secunia.com/advisories/43430","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/46481","source":"cve@mitre.org","tags":["Exploit"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/65555","source":"cve@mitre.org"},{"url":"http://archives.neohapsis.com/archives/bugtraq/2011-02/0217.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit"]},{"url":"http://secunia.com/advisories/43430","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/46481","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/65555","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}