CVE-2013-0503

IBM Lotus Connections <4.0 CR3 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in the Bookmarks component in IBM Lotus Connections before 4.0 CR3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References (3)

[Various Sources] http://www-01.ibm.com/support/docview.wss?uid=swg1LO74182

[Vendor Advisory] http://www-01.ibm.com/support/docview.wss?uid=swg21634538

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/82265

Scores

EPSS 0.0027

EPSS Percentile 49.9%

Details

CWE

CWE-79

Status published

Products (14)

ibm/lotus_connections < 4.0.0.0

ibm/lotus_connections

... and 4 more

Published Apr 23, 2013

Tracked Since Feb 18, 2026