Anquanquantao

Name of the Vulnerable Software and Affected Versions: domainmod version 4.10.0 Description: The issue allows for Cross Site Request Forgery (CSRF) attacks, which can lead to a change in the admin password. The affected components include the "http://127.0.0.1/settings/password/" endpoint, as well as the "http://127.0.0.1/admin/users/add.php" and "http://127.0.0.1/admin/users/edit.php?uid=2" endpoints. The attack can occur after an administrator has logged in and opens a malicious HTML page. Recommendations: For domainmod version 4.10.0, consider disabling access to the vulnerable endpoints, such as "http://127.0.0.1/settings/password/", "http://127.0.0.1/admin/users/add.php", and "http://127.0.0.1/admin/users/edit.php", until a patch is available. Additionally, restrict the use of the `uid` parameter in the "http://127.0.0.1/admin/users/edit.php" endpoint to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: DomainMOD version 4.10.0 Description: The issue allows for Cross Site Request Forgery (CSRF) attacks, which can lead to the addition of an administrator account. The vulnerable component is the admin/users/add.php page. The attack can occur after an administrator has logged in and an attacker opens a malicious HTML page. Recommendations: For DomainMOD version 4.10.0, as a temporary workaround, consider restricting access to the admin/users/add.php page until a patch is available. Additionally, avoid performing administrative tasks on untrusted networks or devices to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: DomainMOD version 4.10.0 Description: The issue allows for a Cross Site Request Forgery (CSRF) attack, which can change a read-only user to an admin. The component affected is the "admin/users/edit.php?uid=2" endpoint. The attack can occur after an administrator has logged in and an HTML page is opened. Recommendations: For DomainMOD version 4.10.0, as a temporary workaround, consider restricting access to the "admin/users/edit.php?uid=2" endpoint until a patch is available. Avoid using this endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** FUEL CMS version 1.4 **Description** A cross-site request forgery issue exists, allowing remote attackers to modify the administrator's password via the "my profile/edit?inline=" endpoint. **Recommendations** For FUEL CMS version 1.4, consider disabling the my profile/edit functionality until a patch is available to prevent exploitation. Restrict access to the my profile/edit endpoint to minimize the risk of unauthorized password changes.

**Name of the Vulnerable Software and Affected Versions** DomainMod version 4.10.0 **Description** The issue concerns a Stored XSS in the "/settings/profile/index.php" `new first name` parameter. **Recommendations** For DomainMod version 4.10.0, update to a version that fixes this issue, as using the `new first name` parameter in the "/settings/profile/index.php" endpoint can lead to exploitation. As a temporary workaround, consider restricting access to the "/settings/profile/index.php" endpoint until a patch is available.

**Name of the Vulnerable Software and Affected Versions** DomainMod version 4.10.0 **Description** The issue concerns a Stored XSS in the "/settings/profile/index.php" `new last name` parameter. **Recommendations** For DomainMod version 4.10.0, avoid using the `new last name` parameter in the "/settings/profile/index.php" endpoint until the issue is resolved.