Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
Stored XSS vulnerability in Custom SSL Fields #83
Stored XSS vulnerability in Version 4.11.01 which allows remote attacker to inject arbitrary script or html. This being stored, will impact all users who have permissions to view the vulnerable page.
Vulnerable Endpoint: https://demo.domainmod.org/admin/ssl-fields/add.php
CVE-ID Assigned for above vulnerability http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19751