CVE-2018-11502
CVE-2018-11502
An issue was discovered in the Moderator Log Notes plugin 1.1 for MyBB. It allows moderators to save notes and display them in a list in the modCP. An attacker can remotely delete all mod notes and mod note logs in the modCP and ACP via CSRF.
Affected products
n/a · n/apublic PoCs found — 3
cve_referencepacketstormsecurity.com/files/148999/MyBB-Moderator-Log-Notes-1.1-Cross-Site-Request-Forgery.htmlunverifiedcve_referencewww.exploit-db.com/exploits/45224/unverifiedexploitdbwww.exploit-db.com/exploits/45224unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →