5 matches found
DomainMOD 4.11.01 ssl-accounts.php Cross Site Scripting
Exploit Title : DomainMOD 4.11.01 and before - 'ssl-accounts.php username' Cross-Site Scripting Author Discovered By : Mohammed Abdul Raheem Company Name : TrekShield IT Solutions Date : 19-02-2019 Vendor Homepage : https://domainmod.org/ Software Information Link :...
CVE-2018-20010
creationtimestamp| type| source ---|---|--- 2019-02-14 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/46373...
DomainMOD 4.11.01 - 'ssl-accounts.php username' Cross-Site Scripting
Exploit Title: DomainMOD 4.11.01 - Cross-Site Scripting Date: 2018-11-22 Exploit Author: Mohammed Abdul Raheem Vendor Homepage: domainmod https://domainmod.org/ Software Link: domainmod https://github.com/DomainMod/DomainMod Version: v4.09.03 to v4.11.01 CVE : CVE-2018-20010 A Stored Cross-site...
DomainMOD 4.11.01 - ssl-accounts.php username Cross-Site Scripting
DomainMOD 4.11.01 - ssl-accounts.php username Cross-Site Scripting Exploit Title: DomainMOD 4.11.01 - Cross-Site Scripting Date: 2018-11-22 Exploit Author: Mohammed Abdul Raheem Vendor Homepage: domainmod https://domainmod.org/ Software Link: domainmod https://github.com/DomainMod/DomainMod...
CVE-2018-20010
DomainMOD 4.11.01 is vulnerable to Cross-Site Scripting via the assets/add/ssl-provider-account.php username field. This is a stored XSS flaw (payload entered after logging into the DomainMOD panel on that page) that can lead to arbitrary JavaScript execution in the victim’s browser. The issue is...