CVE-2018-19914

DomainMOD through 4.11.01 has XSS via the assets/add/dns.php Profile Name or notes field.
References
Link Resource
https://github.com/domainmod/domainmod/issues/87 Exploit Third Party Advisory
https://www.exploit-db.com/exploits/46375/ Exploit Third Party Advisory VDB Entry
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:domainmod:domainmod:*:*:*:*:*:*:*:*

Information

Published : 2018-12-06 11:29

Updated : 2019-02-26 08:31


NVD link : CVE-2018-19914

Mitre link : CVE-2018-19914


JSON object : View

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Advertisement

dedicated server usa

Products Affected

domainmod

  • domainmod