CVE-2018-20010
NONE EPSS 90.2%
Published Dec 10, 20187y ago · Modified Jun 17, 20262w ago
Published Dec 10, 2018 7y ago
Last Modified Jun 17, 2026 2w ago
Description
DomainMOD 4.11.01 has XSS via the assets/add/ssl-provider-account.php username field.
Threat Intelligence
EPSS Exploit Probability
90.2% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available
Weaknesses 1
CWE-79 Cross-site Scripting Injection
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| domainmod | domainmod | * | ≥4.09.03 – ≤4.11.01 |
References 2
- github.com https://github.com/domainmod/domainmod/issues/88
- exploit-db.com https://www.exploit-db.com/exploits/46373/
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.