CVE-2018-20010

NONE EPSS 90.2%
Published Dec 10, 20187y ago · Modified Jun 17, 20262w ago
Find Similar
Published Dec 10, 2018 7y ago
Last Modified Jun 17, 2026 2w ago

Description

DomainMOD 4.11.01 has XSS via the assets/add/ssl-provider-account.php username field.

Threat Intelligence

EPSS Exploit Probability
90.2% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available

Weaknesses 1

CWE-79 Cross-site Scripting Injection

Affected Products 1

VendorProductVersionRange
domainmoddomainmod*≥4.09.03  –  ≤4.11.01

References 2

  • github.com https://github.com/domainmod/domainmod/issues/88
    ExploitThird Party Advisory
  • exploit-db.com https://www.exploit-db.com/exploits/46373/
    ExploitThird Party AdvisoryVDB Entry

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.