mybb — Vulnerabilities & Security Advisories 9

All 9 CVE vulnerabilities found in mybb, with AI-generated Chinese analysis, references, and POCs.

Vendor: MyBB

CVE ID	Title	CVSS	Severity	Published
CVE-2023-53979	MyBB 1.8.32 Authenticated Remote Code Execution via Chained Vulnerabilities CWE-22	8.8	High	2025-12-22
CVE-2025-48941	MyBB may disclosure unviewable threads' titles in searches CWE-1230	5.3	Medium	2025-06-02
CVE-2025-48940	MyBB's upgrade component vulnerable to local file inclusion CWE-22	7.2	High	2025-06-02
CVE-2024-23335	Backups directory .htaccess deletion in. MyBB CWE-20	4.7	Medium	2024-05-01
CVE-2024-23336	Incomplete disallowed remote addresses list in MyBB CWE-918	5.0	Medium	2024-05-01
CVE-2023-46251	Visual editor persistent Cross-site Scripting (XSS) in MyBB CWE-79	7.5	High	2023-11-06
CVE-2022-39265	Mail settings' command parameter injection in mybb CWE-74	7.2	High	2022-10-06
CVE-2022-24734	Remote code execution in mybb CWE-94	7.2	High	2022-03-09
CVE-2020-15139	XSS in MyBB CWE-79	8.8	High	2020-08-10

All 9 known CVE vulnerabilities affecting mybb with full Chinese analysis, references, and POCs where available.