Domainmod · Domainmod · CVE-2018-19892
**Name of the Vulnerable Software and Affected Versions**
DomainMOD versions prior to 4.11.02
**Description**
The issue allows for XSS attacks via the DisplayName, HostName, or UserName field in the admin/dw/add-server.php page.
**Recommendations**
For DomainMOD versions prior to 4.11.02, update to version 4.11.02 or later to resolve the issue.