Cross-site scripting (XSS) vulnerability in iNotes in IBM Domino 8.5.x prior to 8.5.3 FP6 and 9.0.x prior to 9.0.1, when ultra-light mode is enabled, allows remote malicious users to inject arbitrary web script or HTML via active content in an e-mail message, aka SPR TCLE98ZKRP.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm lotus inotes 8.5.3.0 |
||
ibm lotus domino 8.5.3.5 |
||
ibm lotus inotes 9.0.0.0 |
||
ibm lotus inotes 8.5.3.5 |
||
ibm lotus domino 8.5.3.4 |
||
ibm lotus domino 8.5.3.3 |
||
ibm lotus domino 8.5.3.2 |
||
ibm lotus inotes 8.5.3.2 |
||
ibm lotus inotes 8.5.3.1 |
||
ibm lotus domino 9.0.0.0 |
||
ibm lotus inotes 8.5.3.4 |
||
ibm lotus inotes 8.5.3.3 |
||
ibm lotus domino 8.5.3.1 |
||
ibm lotus domino 8.5.3.0 |