Cross-Site Scripting Vulnerability in IBM Lotus Domino iNotes
CVE-2013-0590

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Inotes; Lotus Domino
Vendor: CVE Published:; 27 August 2013

Summary

A vulnerability in IBM's Lotus Domino iNotes versions 8.5.x before 8.5.3 FP5 allows remote authenticated users to inject arbitrary web scripts or HTML. This could be exploited via unspecified vectors, potentially leading to unauthorized actions on behalf of users. This presents serious security risks, especially in environments where sensitive information is handled.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21647740

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/83814

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Aug 27, 2013
Vulnerability Reserved
Dec 16, 2012