CVE-2018-20010

Name of the Vulnerable Software and Affected Versions DomainMOD version 4.11.01

Description The issue is related to a security problem where an attacker can inject malicious code. This is possible due to insufficient input validation in the username field of the "assets/add/ssl-provider-account.php" endpoint.

Recommendations For DomainMOD version 4.11.01, update to a newer version that includes a fix for this issue, if available. As a temporary workaround, consider validating and sanitizing user input for the username field in the "assets/add/ssl-provider-account.php" endpoint to prevent malicious code injection.