5 matches found
CVE-2018-11502
An issue was discovered in the Moderator Log Notes plugin 1.1 for MyBB. It allows moderators to save notes and display them in a list in the modCP. An attacker can remotely delete all mod notes and mod note logs in the modCP and ACP via CSRF...
CVE-2018-11430
An issue was discovered in the Moderator Log Notes plugin 1.1 for MyBB. It allows moderators to save notes and display them in a list in the modCP. The XSS is located in the mod notes textarea...
vBulletin <= 3.7.1 Moderation Control Panel 'redirect' Parameter Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/29817/info vBulletin is prone to a cross-site scripting vulnerability that occurs in the MCP moderation control panel because the application fails to properly sanitize user-supplied input. An attacker may leverage this...
vBulletin 3.7.1 - Moderation Control Panel redirect Cross-Site Scripting
vBulletin 3.7.1 - Moderation Control Panel redirect Cross-Site Scripting source: https://www.securityfocus.com/bid/29817/info vBulletin is prone to a cross-site scripting vulnerability that occurs in the MCP moderation control panel because the application fails to properly sanitize user-supplied...
vBulletin 3.7.1 - Moderation Control Panel 'redirect' Cross-Site Scripting
source: https://www.securityfocus.com/bid/29817/info vBulletin is prone to a cross-site scripting vulnerability that occurs in the MCP moderation control panel because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...