CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2026/04/29 7:24 p.m.•2 views

EUVD-2018-21830

MyBB Recent threads 17.0 contains a persistent cross-site scripting vulnerability that allows attackers to inject malicious scripts by creating threads with crafted subject lines. Attackers can create threads with script tags in the subject parameter to execute arbitrary JavaScript in the browser...

7.2CVSS5.3AI score0.00261EPSS

Exploits1References3

EUVD•added 2026/04/04 3:30 p.m.•1 views

EUVD-2018-21752

MyBB Last User's Threads in Profile Plugin 1.2 contains a persistent cross-site scripting vulnerability that allows attackers to inject malicious scripts by crafting thread subjects with script tags. Attackers can create threads with script payloads in the subject field that execute when users...

7.2CVSS5.9AI score0.00201EPSS

Exploits1References4

Positive Technologies•added 2026/04/04 12:0 a.m.•3 views

PT-2026-30370

7.2CVSS5.9AI score0.00201EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-2652

Malware in sbrugna...

5.4CVSS5.5AI score0.01643EPSS

Exploits5References4

OSV•added 2022/08/02 4:15 p.m.•1 views

CVE-2022-35221

Teamplus Pro community discussion has an ‘allocation of resource without limits or throttling’ vulnerability on thread subject field. A remote attacker with general user privilege posting a thread subject with large content can cause the server to allocate too much memory, leading to missing...

5.4CVSS6.1AI score0.00651EPSS

Exploits0References1

ATTACKERKB•added 2022/07/29 7:5 a.m.•1 views

CVE-2022-35221

5.4CVSS5.8AI score0.00651EPSS

Exploits0References2

OSV•added 2019/03/21 4:0 p.m.•3 views

CVE-2018-14575

Trash Bin plugin 1.1.3 for MyBB has cross-site scripting XSS via a thread subject and a cross-site request forgery CSRF via a post subject...

8.8CVSS5.7AI score0.02377EPSS

Exploits5References3

Prion•added 2018/06/04 5:29 p.m.•9 views

Cross site scripting

The Recent Threads plugin before 1.1 for MyBB allows XSS via a thread subject...

3.5CVSS5.2AI score0.01683EPSS

Exploits5References2Affected Software1

OSV•added 2018/06/04 5:29 p.m.•3 views

CVE-2018-11715

The Recent Threads plugin before 1.1 for MyBB allows XSS via a thread subject...

5.4CVSS5.8AI score0.01683EPSS

Exploits5References2

OSV•added 2018/05/11 2:29 p.m.•0 views

CVE-2018-10580

The "Latest Posts on Profile" plugin 1.1 for MyBB has XSS because there is an added section in a user profile that displays that user's most recent posts without sanitizing the tsubject aka thread subject field...

5.4CVSS5.8AI score0.01643EPSS

Exploits5References2

Prion•added 2013/09/12 1:31 p.m.•9 views

Cross site scripting

Cross-site scripting XSS vulnerability in pages/TalkpageHistoryView.php in the LiquidThreads LQT extension 2.x and possibly 3.x for MediaWiki 1.19.x before 1.19.8, 1.20.x before 1.20.7, and 1.21.x before 1.21.2 allows remote attackers to inject arbitrary web script or HTML via a thread subject...

4.3CVSS6.2AI score0.01285EPSS

Exploits0References6Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by