Mohammed Abdul Kareem

**Name of the Vulnerable Software and Affected Versions** DomainMOD versions prior to 4.12 **Description** The issue allows for XSS attacks via the Profile Name or notes field in the assets/add/dns.php file. **Recommendations** For DomainMOD versions prior to 4.12, update to version 4.12 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** DomainMOD versions prior to 4.11.02 **Description** The issue allows for XSS attacks via the `assets/edit/host.php` Web Host Name or Web Host URL field. **Recommendations** For DomainMOD versions prior to 4.11.02, update to version 4.11.02 or later to resolve the issue.