CVE-2012-5305

Name of the Vulnerable Software and Affected Versions JBMC Software DirectAdmin version 1.403

Description A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved via the domain parameter in CMD DOMAIN.

Recommendations For version 1.403, update to a newer version that contains a fix for this issue. As a temporary workaround, consider restricting access to the CMD DOMAIN function to minimize the risk of exploitation. Avoid using the domain parameter in the affected function until the issue is resolved.