CVE-2013-5389

IBM Domino <9.0-8.5.3 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in iNotes in IBM Domino 8.5.3 before FP5 IF2 and 9.0 before IF5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka SPR PTHN9AYK2X.

References (2)

[Vendor Advisory] http://www-01.ibm.com/support/docview.wss?uid=swg21653149

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/87125

Scores

EPSS 0.0024

EPSS Percentile 46.3%

Details

CWE

CWE-79

Status published

Products (3)

ibm/lotus_domino

n/a/n/a

Published Oct 22, 2013

Tracked Since Feb 18, 2026