VYPR

Moderator Log Notes

by MyBB

CVEs (2)

  • CVE-2018-11502MedAug 24, 2018
    risk 0.45cvss 6.5epss 0.02

    An issue was discovered in the Moderator Log Notes plugin 1.1 for MyBB. It allows moderators to save notes and display them in a list in the modCP. An attacker can remotely delete all mod notes and mod note logs in the modCP and ACP via CSRF.

  • CVE-2018-11430MedMay 28, 2018
    risk 0.35cvss 5.4epss 0.01

    An issue was discovered in the Moderator Log Notes plugin 1.1 for MyBB. It allows moderators to save notes and display them in a list in the modCP. The XSS is located in the mod notes textarea.