Unrated severityNVD Advisory· Published Aug 27, 2013· Updated Apr 29, 2026
CVE-2013-0591
CVE-2013-0591
Description
Cross-site scripting (XSS) vulnerability in iNotes 8.5.x in IBM Lotus Domino 8.5 before 8.5.3 FP5 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, aka SPR PTHN95XNR3, a different vulnerability than CVE-2013-0590.
Affected products
22cpe:2.3:a:ibm:lotus_domino:8.5.0:*:*:*:*:*:*:*+ 17 more
- cpe:2.3:a:ibm:lotus_domino:8.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_domino:8.5.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_domino:8.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_domino:8.5.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_domino:8.5.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_domino:8.5.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_domino:8.5.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_domino:8.5.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_domino:8.5.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_domino:8.5.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_domino:8.5.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_domino:8.5.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_domino:8.5.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_domino:8.5.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_domino:8.5.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_domino:8.5.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_domino:8.5.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_domino:8.5.3.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_inotes:8.5.0.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:ibm:lotus_inotes:8.5.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_inotes:8.5.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_inotes:8.5.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:lotus_inotes:8.5.3.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www-01.ibm.com/support/docview.wssnvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/83381nvd
News mentions
0No linked articles in our index yet.