Known Vulnerabilities for Last User Threads by Mybb
Listed below are 1 of the newest known vulnerabilities associated with "Last User Threads" by "Mybb".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-54224 json | UBB.threads is vulnerable to Denial of Service (DoS). By sending multiple concurrent requests to view any user profile on ins... | Not Provided | 2026-06-18 | 2026-06-18 |
| CVE-2026-54222 json | UBB.threads is vulnerable to Blind SQL Injection, allowing attackers with access to the Members in Control Panel to intera... | Not Provided | 2026-06-18 | 2026-06-18 |
| CVE-2026-54221 json | UBB.threads is vulnerable to Reflected XSS. The application improperly handles user input in certain requests, enabling atta... | Not Provided | 2026-06-18 | 2026-06-18 |
| CVE-2026-54220 json | uBB.threads is vulnerable to a Cross-Site Request Forgery (CSRF) due to a lack of protective mechanisms. This allows an atta... | Not Provided | 2026-06-18 | 2026-06-18 |
| CVE-2026-54219 json | UBB.threads is vulnerable to Stored XSS via user posts and user profile fields. The application fails to properly sanitize us... | Not Provided | 2026-06-18 | 2026-06-18 |
| CVE-2026-53673 json | BuddyPress 14.4.0 contains an insecure direct object reference vulnerability in the messages REST API that allows authenticat... | Not Provided | 2026-06-10 | 2026-06-10 |
| CVE-2026-53352 json | In the Linux kernel, the following vulnerability has been resolved: signal: clear JOBCTL_PENDING_MASK for caller in zap_othe... | Not Provided | 2026-07-01 | 2026-07-01 |
| CVE-2026-52945 json | In the Linux kernel, the following vulnerability has been resolved: Revert "wireguard: device: enable threaded NAPI" This r... | Not Provided | 2026-06-24 | 2026-07-02 |
| CVE-2026-48776 json | LangGraph Python SDK is used to connect to running LangGraph API servers, manage assistants, threads and stream runs from Pyt... | Not Provided | 2026-06-17 | 2026-06-17 |
| CVE-2026-45251 json | A file descriptor can be closed while a thread is blocked in a poll(2) or select(2) call waiting for that descriptor. Becaus... | Not Provided | 2026-05-21 | 2026-05-21 |