CVE-2019-6979

Affected software: MyBB IP History Logs plugin 1.0.2. Vulnerability: Cross-Site Scripting (XSS) via the useragent field in admin/modules/tools/ip_history_logs.php. Root cause: Input not sanitized, enabling script injection in the admin context. Impact: XSS could execute in the admin’s browser whe...