Known Vulnerabilities for Mybb by Vendor
Listed below are 7 of the newest known vulnerabilities associated with "Mybb" by "Vendor".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-23749 json | Cross-Site Request Forgery (CSRF) vulnerability in progpars.net mybb Last Topics mybb-last-topics allows Stored XSS.This issu... | Not Provided | 2025-01-16 | 2026-04-23 |
| CVE-2021-47934 json | MyBB Timeline Plugin 1.0 contains cross-site scripting vulnerabilities that allow attackers to inject malicious scripts throu... | Not Provided | 2026-05-16 | 2026-05-18 |
| CVE-2018-25309 json | MyBB Recent threads 17.0 contains a persistent cross-site scripting vulnerability that allows attackers to inject malicious s... | Not Provided | 2026-04-29 | 2026-04-30 |
| CVE-2018-25250 json | MyBB Last User's Threads in Profile Plugin 1.2 contains a persistent cross-site scripting vulnerability that allows attackers... | Not Provided | 2026-04-04 | 2026-04-06 |
| CVE-2018-25249 json | MyBB My Arcade Plugin 1.3 contains a persistent cross-site scripting vulnerability that allows authenticated users to inject ... | Not Provided | 2026-04-04 | 2026-04-06 |
| CVE-2018-25248 json | MyBB Downloads Plugin 2.0.3 contains a persistent cross-site scripting vulnerability that allows regular members to inject ma... | Not Provided | 2026-04-04 | 2026-04-06 |
| CVE-2018-25247 json | MyBB Like Plugin 3.0.0 contains a stored cross-site scripting vulnerability. Authenticated attackers can inject script payloa... | Not Provided | 2026-04-04 | 2026-05-25 |