CVE-2019-1010094

Name of the Vulnerable Software and Affected Versions: domainmod version 4.10.0

Description: The issue allows for Cross Site Request Forgery (CSRF) attacks, which can lead to a change in the admin password. The affected components include the "http://127.0.0.1/settings/password/" endpoint, as well as the "http://127.0.0.1/admin/users/add.php" and "http://127.0.0.1/admin/users/edit.php?uid=2" endpoints. The attack can occur after an administrator has logged in and opens a malicious HTML page.

Recommendations: For domainmod version 4.10.0, consider disabling access to the vulnerable endpoints, such as "http://127.0.0.1/settings/password/", "http://127.0.0.1/admin/users/add.php", and "http://127.0.0.1/admin/users/edit.php", until a patch is available. Additionally, restrict the use of the uid parameter in the "http://127.0.0.1/admin/users/edit.php" endpoint to minimize the risk of exploitation.