Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
domainmod domainmod vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2018-19892
DomainMOD up to and including 4.11.01 has XSS via the admin/dw/add-server.php DisplayName, HostName, or UserName field.
Domainmod Domainmod
4.8
CVSSv3
CVE-2018-19913
DomainMOD up to and including 4.11.01 has XSS via the assets/add/registrar-accounts.php UserName, Reseller ID, or notes field.
Domainmod Domainmod
4.8
CVSSv3
CVE-2018-19915
DomainMOD up to and including 4.11.01 has XSS via the assets/edit/host.php Web Host Name or Web Host URL field.
Domainmod Domainmod
1 EDB exploit
4.8
CVSSv3
CVE-2018-1000856
DomainMOD version 4.09.03 and above. Also verified in the latest version 4.11.01 contains a Cross Site Scripting (XSS) vulnerability in Segment Name field in the segments page that can result in Arbitrary script can be executed on all users browsers who visit the affected page. T...
Domainmod Domainmod
4.8
CVSSv3
CVE-2018-19752
DomainMOD up to and including 4.11.01 has XSS via the assets/add/registrar.php notes field for the Registrar.
Domainmod Domainmod
7.5
CVSSv3
CVE-2019-9080
DomainMOD prior to 4.14.0 uses MD5 without a salt for password storage.
Domainmod Domainmod
6.1
CVSSv3
CVE-2019-15811
In DomainMOD up to and including 4.13, the parameter daterange in the file reporting/domains/cost-by-month.php has XSS.
Domainmod Domainmod
1 EDB exploit
4.8
CVSSv3
CVE-2018-20009
DomainMOD 4.11.01 has XSS via the assets/add/ssl-provider.php SSL Provider Name or SSL Provider URL field.
Domainmod Domainmod
1 EDB exploit
4.8
CVSSv3
CVE-2018-20011
DomainMOD 4.11.01 has XSS via the assets/add/category.php Category Name or Stakeholder field.
Domainmod Domainmod
1 EDB exploit
4.8
CVSSv3
CVE-2018-19914
DomainMOD up to and including 4.11.01 has XSS via the assets/add/dns.php Profile Name or notes field.
Domainmod Domainmod
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code execution
CVE-2024-34909
CVE-2024-3317
SSTI
CVE-2024-3400
CVE-2024-30051
wireless
CVE-2024-4622
CVE-2024-4908
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »