Cross-Site Scripting Flaw in IBM Domino iNotes
CVE-2013-5388

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Domino
Vendor: CVE Published:; 22 October 2013

What is CVE-2013-5388?

A Cross-site scripting (XSS) vulnerability exists in iNotes within IBM Domino versions 8.5.3 before FP5 IF2 and 9.0 before IF5. This flaw allows remote attackers to craft arbitrary web scripts or HTML injections via unspecified vectors. Successful exploitation may lead to unauthorized actions performed on behalf of the users and potential data compromise. It is essential for organizations using affected versions to implement security measures promptly to mitigate this vulnerability.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21653149

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/87123

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 22, 2013
Vulnerability Reserved
Aug 22, 2013