6 matches found
DeepL Pro API translation < 2.4.1.2 - Log Pruning via CSRF
Description The plugin does not have CSRF checks when pruning logs, which could allow attackers to make logged in admins perform such action via a CSRF attack...
CVE-2016-9409
Cross-site scripting XSS vulnerability in the Admin control panel in MyBB aka MyBulletinBoard before 1.8.7 and MyBB Merge System before 1.8.7 might allow remote attackers to inject arbitrary web script or HTML via vectors involving pruning logs...
CVE-2016-9409
Cross-site scripting XSS vulnerability in the Admin control panel in MyBB aka MyBulletinBoard before 1.8.7 and MyBB Merge System before 1.8.7 might allow remote attackers to inject arbitrary web script or HTML via vectors involving pruning logs...
Cross site scripting
Cross-site scripting XSS vulnerability in the Admin control panel in MyBB aka MyBulletinBoard before 1.8.7 and MyBB Merge System before 1.8.7 might allow remote attackers to inject arbitrary web script or HTML via vectors involving pruning logs...
CVE-2016-9409
CV E-2016-9409 is an XSS vulnerability in the admin control panel of MyBB (and MyBB Merge System) before version 1.8.7. The flaw allows remote attackers to inject arbitrary web script or HTML via vectors involving pruning logs. It affects MyBB prior to 1.8.7, with impact limited to client-side sc...
CVE-2016-9409
Cross-site scripting XSS vulnerability in the Admin control panel in MyBB aka MyBulletinBoard before 1.8.7 and MyBB Merge System before 1.8.7 might allow remote attackers to inject arbitrary web script or HTML via vectors involving pruning logs...