XSS in Ibm Lotus_domino

CVE-2013-4055

Cross-site scripting (XSS) vulnerability in webadmin.nsf in Domino Web Administrator in IBM Domino 8.5 and 9.0 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.002 (37.5th percentile) — read the EPSS interpretation.

Affected products

Ibm Lotus_domino — versions 8.5.0, 9.0.0.0
N/a — versions n/a

Weakness classification (CWE)

CWE-79 — Cross-site Scripting

References

domino-webadmin-cve20134055-xss(86544) (vdb-entry, x_refsource_XF)
psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)