Cross-Site Scripting Vulnerability in IBM Domino Web Administrator
CVE-2013-4051

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Domino
Vendor: CVE Published:; 8 November 2013

What is CVE-2013-4051?

The IBM Domino Web Administrator is susceptible to a Cross-Site Scripting vulnerability that permits remote authenticated users to inject arbitrary web scripts or HTML. This can occur through unspecified vectors within the webadmin.nsf file. Attackers can exploit this flaw to execute malicious scripts in the context of other users, potentially compromising user accounts and sensitive data.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/86503

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21652988

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 8, 2013
Vulnerability Reserved
Jun 7, 2013