XSS in Ibm Lotus_domino
CVE-2013-0595
Multiple cross-site scripting (XSS) vulnerabilities in iNotes 8.5.x in IBM Lotus Domino 8.5 before 8.5.3 FP5 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka SPR PTHN95XNR3.
Vulnerability class: XSS (Cross-Site Scripting)
EPSS: 0.003 (50.4th percentile) — read the EPSS interpretation.
Affected products
- Ibm Lotus_domino — versions 8.5.0, 8.5.0.1, 8.5.1
- Ibm Lotus_inotes — versions 8.5.0.0, 8.5.1.0, 8.5.2.0
- N/a — versions n/a
Weakness classification (CWE)
References
- psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)
- psirt@us.ibm.com (x_refsource_CONFIRM)
- inotes-cve20130595-xss(83431) (vdb-entry, x_refsource_XF)