Multiple unspecified vulnerabilities in the Profiles search pages in IBM Lotus Connections 2.x before 2.0.1 have unknown impact and attack vectors related to "Active" content. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

More... (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4809)