CVE-2018-19914by Jeremyin Security Bulletinson Posted on December 6, 2018 DomainMOD through 4.11.01 has XSS via the assets/add/dns.php Profile Name or notes field.