Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
domainmod domainmod vulnerabilities and exploits
(subscribe to this query)
312
VMScore
CVE-2018-19749
DomainMOD up to and including 4.11.01 has XSS via the assets/add/account-owner.php Owner name field.
Domainmod Domainmod
445
VMScore
CVE-2019-9080
DomainMOD prior to 4.14.0 uses MD5 without a salt for password storage.
Domainmod Domainmod
435
VMScore
CVE-2019-15811
In DomainMOD up to and including 4.13, the parameter daterange in the file reporting/domains/cost-by-month.php has XSS.
Domainmod Domainmod
1 EDB exploit
312
VMScore
CVE-2018-1000856
DomainMOD version 4.09.03 and above. Also verified in the latest version 4.11.01 contains a Cross Site Scripting (XSS) vulnerability in Segment Name field in the segments page that can result in Arbitrary script can be executed on all users browsers who visit the affected page. T...
Domainmod Domainmod
435
VMScore
CVE-2018-19136
DomainMOD up to and including 4.11.01 has XSS via the assets/edit/registrar-account.php raid parameter.
Domainmod Domainmod
1 EDB exploit
383
VMScore
CVE-2018-19137
DomainMOD up to and including 4.11.01 has XSS via the assets/edit/ip-address.php ipid parameter.
Domainmod Domainmod
312
VMScore
CVE-2018-11558
DomainMod 4.10.0 has Stored XSS in the "/settings/profile/index.php" new_first_name parameter.
Domainmod Domainmod 4.10.0
605
VMScore
CVE-2019-1010094
domainmod v4.10.0 is affected by: Cross Site Request Forgery (CSRF). The impact is: There is a CSRF vulnerability that can change admin password. The component is: http://127.0.0.1/settings/password/ http://127.0.0.1/admin/users/add.php http://127.0.0.1/admin/users/edit.php?uid=2...
Domainmod Domainmod 4.10.0
605
VMScore
CVE-2019-1010096
DomainMOD v4.10.0 is affected by: Cross Site Request Forgery (CSRF). The impact is: There is a CSRF vulnerability that can change the read-only user to admin. The component is: admin/users/edit.php?uid=2. The attack vector is: After the administrator logged in, open the html page...
Domainmod Domainmod 4.10.0
383
VMScore
CVE-2020-20989
A cross-site request forgery (CSRF) in /admin/maintenance/ of Domainmod 4.13 allows malicious users to arbitrarily delete logs.
Domainmod Domainmod 4.13.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »