Vulnerability Details : CVE-2004-1621

** DISPUTED ** NOTE: this issue has been disputed by the vendor. Cross-site scripting (XSS) vulnerability in IBM Lotus Notes R6 and Domino R6, and possibly earlier versions, allows remote attackers to execute arbitrary web script or HTML via square brackets at the beginning and end of (1) computed for display, (2) computed when composed, or (3) computed text element fields. NOTE: the vendor has disputed this issue, saying that it is not a problem with Notes/Domino itself, but with the applications that do not properly handle this feature.
Vulnerability category: Cross site scripting (XSS)
Published 2004-10-18 04:00:00
Updated 2017-07-11 01:31:12
Source MITRE
View at NVD,

Exploit prediction scoring system (EPSS) score for CVE-2004-1621

Probability of exploitation activity in the next 30 days: 0.48%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 73 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2004-1621

Base Score Base Severity CVSS Vector Exploitability Score Impact Score Source
[email protected]

References for CVE-2004-1621

Products affected by CVE-2004-1621

This web site uses cookies for managing your session and website analytics (Google analytics) purposes as described in our privacy policy.
By using this web site you are agreeing to terms of use!