Domainmod

domainmod

31 CVEs • 1 product

Products (1)

Click to collapse

Toggle

CVEs (31)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2018-19892 1Domainmod 1Domainmod Nov 21, 2024 Dec 6, 2018 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 DomainMOD through 4.11.01 has XSS via the admin/dw/add-server.php DisplayName, HostName, or UserName field.
CVE-2018-19752 1Domainmod 1Domainmod Nov 21, 2024 Nov 29, 2018 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 DomainMOD through 4.11.01 has XSS via the assets/add/registrar.php notes field for the Registrar.
CVE-2018-19751 1Domainmod 1Domainmod Nov 21, 2024 Nov 29, 2018 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 DomainMOD through 4.11.01 has XSS via the admin/ssl-fields/add.php notes field for Custom SSL Fields.
CVE-2018-19750 1Domainmod 1Domainmod Nov 21, 2024 Nov 29, 2018 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 DomainMOD through 4.11.01 has XSS via the admin/domain-fields/ notes field in an Add Custom Field action for Custom Domain Fields.
CVE-2018-19749 1Domainmod 1Domainmod Nov 21, 2024 Nov 29, 2018 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 DomainMOD through 4.11.01 has XSS via the assets/add/account-owner.php Owner name field.
CVE-2018-19137 1Domainmod 1Domainmod Nov 21, 2024 Nov 9, 2018 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 DomainMOD through 4.11.01 has XSS via the assets/edit/ip-address.php ipid parameter.
CVE-2018-19136 1Domainmod 1Domainmod Nov 21, 2024 Nov 9, 2018 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 DomainMOD through 4.11.01 has XSS via the assets/edit/registrar-account.php raid parameter.
CVE-2018-11559 1Domainmod 1Domainmod Nov 21, 2024 May 30, 2018 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 DomainMod 4.10.0 has Stored XSS in the "/settings/profile/index.php" new_last_name parameter.
CVE-2018-11558 1Domainmod 1Domainmod Nov 21, 2024 May 30, 2018 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 DomainMod 4.10.0 has Stored XSS in the "/settings/profile/index.php" new_first_name parameter.
CVE-2018-11404 1Domainmod 1Domainmod Nov 21, 2024 May 24, 2018 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 DomainMod v4.09.03 has XSS via the assets/edit/ssl-provider-account.php sslpaid parameter.
CVE-2018-11403 1Domainmod 1Domainmod Nov 21, 2024 May 24, 2018 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 DomainMod v4.09.03 has XSS via the assets/edit/account-owner.php oid parameter.