Eugene Dokukin

**Name of the Vulnerable Software and Affected Versions** IBM Domino versions 8.5.x before 8.5.3 FP6 IF8 IBM Domino versions 9.x before 9.0.1 FP4 **Description** A cross-site scripting (XSS) issue exists in the web server of IBM Domino when Webmail is enabled. This allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL. **Recommendations** For IBM Domino versions 8.5.x before 8.5.3 FP6 IF8, update to version 8.5.3 FP6 IF8 or later. For IBM Domino versions 9.x before 9.0.1 FP4, update to version 9.0.1 FP4 or later.

**Name of the Vulnerable Software and Affected Versions** The product name cannot be determined. **Description** General information about the issue is not available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.