Cross-site Scripting Vulnerability Addressed in 6.0.4 and 6.5.2

Technote (FAQ)


IBM Lotus recognized the potential for a cross-site scripting vulnerability to exist under certain circumstances. No customers are known to have been affected by this vulnerability in a production environment.


This issue was reported to IBM Lotus software Quality Engineering and has been addressed in Domino 6.0.4 and 6.5.2. For earlier releases, this issue can be prevented by creating a full text index for databases that allow public access.

This issue does not affect Domino 5.x servers.

Rate this page:

(0 users)Average rating

Document information

More support for:

Lotus End of Support Products
Lotus Domino Server

Software version:

6.0, 6.5

Operating system(s):

AIX, Linux, Solaris, Windows, i5/OS, z/OS

Reference #:


Modified date:


Translate my page

Machine Translation

Content navigation