4 matches found
DomainMod 4.09.03 - 'oid' Cross-Site Scripting
Exploit Title: DomainMod v4.09.03 has XSS via the assets/edit/account-owner.php oid parameter Date: 2018-05-28 Exploit Author: longer([email protected]) Vendor Homepage: domainmod https://github.com/domainmod/domainmod Software Link: domainmod https://github.com/domainmod/domainmod Version: v4.09.0...
DomainMod 4.09.03 - oid Cross-Site Scripting
DomainMod 4.09.03 - oid Cross-Site Scripting Exploit Title: DomainMod v4.09.03 has XSS via the assets/edit/account-owner.php oid parameter Date: 2018-05-28 Exploit Author: longer([email protected]) Vendor Homepage: domainmod https://github.com/domainmod/domainmod Software Link: domainmod...
DomainMod 4.09.03 Cross Site Scripting
Exploit Title: DomainMod v4.09.03 has XSS via the assets/edit/account-owner.php oid parameter Date: 2018-05-28 Exploit Author: longeri1/[email protected]/4 Vendor Homepage: domainmod https://github.com/domainmod/domainmod Software Link: domainmod https://github.com/domainmod/domainmod Version:...
CVE-2018-11403
CVE-2018-11403 affects DomainMod v4.09.03, with an XSS flaw in assets/edit/account-owner.php using the oid parameter. Root cause: insufficient input sanitization/execution of user-supplied oid enabling script injection. Impact: cross-site scripting in affected sessions; CVSS v3.0 base score 5.4 (...