CVE-2013-0595

CWE-79Cross-site Scripting (XSS)3 documents3 sources
Severity
4.3MEDIUM
EPSS
0.3%
top 49.87%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Lotus DominoIBM Lotus Inotes
Timeline
PublishedAug 27
Latest updateMay 14

Description

Multiple cross-site scripting (XSS) vulnerabilities in iNotes 8.5.x in IBM Lotus Domino 8.5 before 8.5.3 FP5 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka SPR PTHN95XNR3.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages2 packages

NVDibm/lotus_domino18 versions+17
NVDibm/lotus_inotes4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-93p4-c9pg-vv86: Multiple cross-site scripting (XSS) vulnerabilities in iNotes 82022-05-14
CVEList
CVE-2013-0595: Multiple cross-site scripting (XSS) vulnerabilities in iNotes 82013-08-27
CVE-2013-0595 (MEDIUM CVSS 4.3) | Multiple cross-site scripting (XSS) | cvebase.io