MidnightBSD

Advisories for admin_notes_project

CVE-2018-11092 MEDIUM

An issue was discovered in the Admin Notes plugin 1.1 for MyBB. CSRF allows an attacker to remotely delete all admin notes via an admin/index.php?empty=table (aka Clear Table) action.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
admin_notes_project admin_notes 1.1