Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
domainmod domainmod vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2019-9080
DomainMOD prior to 4.14.0 uses MD5 without a salt for password storage.
Domainmod Domainmod
6.1
CVSSv3
CVE-2018-19137
DomainMOD up to and including 4.11.01 has XSS via the assets/edit/ip-address.php ipid parameter.
Domainmod Domainmod
4.8
CVSSv3
CVE-2018-1000856
DomainMOD version 4.09.03 and above. Also verified in the latest version 4.11.01 contains a Cross Site Scripting (XSS) vulnerability in Segment Name field in the segments page that can result in Arbitrary script can be executed on all users browsers who visit the affected page. T...
Domainmod Domainmod
6.1
CVSSv3
CVE-2018-19136
DomainMOD up to and including 4.11.01 has XSS via the assets/edit/registrar-account.php raid parameter.
Domainmod Domainmod
1 EDB exploit
6.1
CVSSv3
CVE-2019-15811
In DomainMOD up to and including 4.13, the parameter daterange in the file reporting/domains/cost-by-month.php has XSS.
Domainmod Domainmod
1 EDB exploit
4.8
CVSSv3
CVE-2018-19749
DomainMOD up to and including 4.11.01 has XSS via the assets/add/account-owner.php Owner name field.
Domainmod Domainmod
5.4
CVSSv3
CVE-2018-19750
DomainMOD up to and including 4.11.01 has XSS via the admin/domain-fields/ notes field in an Add Custom Field action for Custom Domain Fields.
Domainmod Domainmod
4.8
CVSSv3
CVE-2018-19751
DomainMOD up to and including 4.11.01 has XSS via the admin/ssl-fields/add.php notes field for Custom SSL Fields.
Domainmod Domainmod
4.8
CVSSv3
CVE-2018-19752
DomainMOD up to and including 4.11.01 has XSS via the assets/add/registrar.php notes field for the Registrar.
Domainmod Domainmod
4.8
CVSSv3
CVE-2018-19913
DomainMOD up to and including 4.11.01 has XSS via the assets/add/registrar-accounts.php UserName, Reseller ID, or notes field.
Domainmod Domainmod
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »