| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2018-25250 | MyBB Last User's Threads in Profile Plugin 1.2 Persistent XSS | MyBB | MyBB Last User's Threads in Profile Plugin | High | 7.2 | 2026-04-04 13:51:15 | Deep Dive |
| CVE-2018-25249 | MyBB My Arcade Plugin 1.3 Persistent XSS via Comment | MyBB | MyBB My Arcade Plugin | Medium | 6.4 | 2026-04-04 13:51:14 | Deep Dive |
| CVE-2018-25248 | MyBB Downloads Plugin 2.0.3 Persistent XSS via downloads.php | MyBB | MyBB Downloads Plugin | High | 7.2 | 2026-04-04 13:51:13 | Deep Dive |
| CVE-2018-25247 | MyBB Like Plugin 3.0.0 Cross-Site Scripting via User Profiles | MyBB | MyBB Like Plugin | Medium | 6.1 | 2026-04-04 13:51:12 | Deep Dive |
| CVE-2021-47905 | MyBB Delete Account Plugin 1.4 - Cross-Site Scripting | vintagedaddyo | MyBB Delete Account Plugin | Medium | 6.1 | 2026-01-23 16:47:44 | Deep Dive |
| CVE-2018-25132 | MyBB Trending Widget Plugin 1.2 - Cross-Site Scripting | zainali99 | MyBB Trending Widget Plugin | Medium | 6.1 | 2026-01-23 16:47:34 | Deep Dive |
| CVE-2018-25116 | MyBB Thread Redirect Plugin 0.2.1 - Cross-Site Scripting | jamiesage123 | MyBB Thread Redirect Plugin | Medium | 6.1 | 2026-01-23 16:47:33 | Deep Dive |
| CVE-2023-53979 | MyBB 1.8.32 Authenticated Remote Code Execution via Chained Vulnerabilities | Mybb | MyBB | High | 8.8 | 2025-12-22 21:35:36 | Deep Dive |
| CVE-2023-53978 | myBB Forums 1.8.26 Stored Cross-Site Scripting via Forum Announcements | Mybb | myBB forums | Medium | 5.4 | 2025-12-22 21:35:36 | Deep Dive |
| CVE-2023-53977 | myBB Forums 1.8.26 Stored Cross-Site Scripting via Forum Management | Mybb | myBB forums | Medium | 5.4 | 2025-12-22 21:35:35 | Deep Dive |
| CVE-2023-53976 | myBB Forums 1.8.26 Stored Cross-Site Scripting via Template Management | Mybb | myBB forums | Medium | 5.4 | 2025-12-22 21:35:35 | Deep Dive |
| CVE-2011-10018 | myBB 1.6.4 Backdoor Arbitrary Command Execution | myBB Group | Forum Software | - | - | 2025-08-13 20:35:32 | Deep Dive |
| CVE-2025-48941 | MyBB may disclosure unviewable threads' titles in searches | mybb | mybb | Medium | 5.3 | 2025-06-02 15:58:49 | Deep Dive |
| CVE-2025-48940 | MyBB's upgrade component vulnerable to local file inclusion | mybb | mybb | High | 7.2 | 2025-06-02 15:52:37 | Deep Dive |
| CVE-2025-23749 | WordPress mybb Last Topics plugin <= 1.0 - CSRF to Stored XSS vulnerability | progpars.net | mybb Last Topics | High | 7.1 | 2025-01-16 20:06:52 | Deep Dive |
| CVE-2024-23335 | Backups directory .htaccess deletion in. MyBB | mybb | mybb | Medium | 4.7 | 2024-05-01 06:27:42 | Deep Dive |
| CVE-2024-23336 | Incomplete disallowed remote addresses list in MyBB | mybb | mybb | Medium | 5.0 | 2024-05-01 06:27:38 | Deep Dive |
| CVE-2023-46251 | Visual editor persistent Cross-site Scripting (XSS) in MyBB | mybb | mybb | High | 7.5 | 2023-11-06 17:41:30 | Deep Dive |
| CVE-2022-39265 | Mail settings' command parameter injection in mybb | mybb | mybb | High | 7.2 | 2022-10-06 00:00:00 | Deep Dive |
| CVE-2022-24734 | Remote code execution in mybb | mybb | mybb | High | 7.2 | 2022-03-09 21:25:08 | Deep Dive |