CVE-2018-14392

EPSS 8.34% · P92 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-14392

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The New Threads plugin before 1.2 for MyBB has XSS.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

MyBB New Threads插件跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

MyBB（又名MyBulletinBoard）是MyBB团队开发的一套用PHP和MySQL开发的免费且基于Web的论坛软件。New Threads plugin是使用在其中的一个主题插件。 MyBB New Threads插件1.2之前版本中存在跨站脚本漏洞。远程攻击者可利用该漏洞注入任意的Web脚本或HTML。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2018-14392

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2018-14392

请登录查看更多情报信息。

https://community.mybb.com/mods.php?action=changelog&pid=1143x_refsource_MISC
https://www.exploit-db.com/exploits/45057/exploitx_refsource_EXPLOIT-DB
https://nvd.nist.gov/vuln/detail/CVE-2018-14392

Same Patch Batch · n/a · 2018-07-19 · 32 CVEs total

CVE-2018-14394		FFmpeg 安全漏洞
CVE-2018-14403		MP4v2 安全漏洞
CVE-2018-14370		Wireshark IEEE 802.11 protocol解析器安全漏洞
CVE-2018-14369		Wireshark HTTP2解析器安全漏洞
CVE-2018-14368		Wireshark Bazaar protocol解析器安全漏洞
CVE-2018-14367		Wireshark CoAP protocol解析器安全漏洞
CVE-2018-14344		Wireshark ISMP解析器安全漏洞
CVE-2018-14343		Wireshark ASN.1 BER解析器安全漏洞
CVE-2018-14342		Wireshark DICOM解析器安全漏洞
CVE-2018-14341		Wireshark DICOM解析器安全漏洞
CVE-2018-14340		Wireshark解析器安全漏洞
CVE-2018-14339		Wireshark MMSE解析器安全漏洞
CVE-2018-14402		axmldec 缓冲区错误漏洞
CVE-2018-14401		AXML Parser 缓冲区错误漏洞
CVE-2018-14399		PHPCMS 安全漏洞
CVE-2018-14395		FFmpeg 数字错误漏洞
CVE-2018-12959		Aditus 安全漏洞
CVE-2018-14404		libxml2 代码问题漏洞
CVE-2018-12911		WebKitGTK+ 安全漏洞
CVE-2018-1529		IBM Rational DOORS Next Generation和Rational Requirements Composer 跨站脚本漏洞

Showing top 20 of 32 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2018-14392

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2018-14392

I. Basic Information for CVE-2018-14392

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2018-14392

III. Intelligence Information for CVE-2018-14392

Same Patch Batch · n/a · 2018-07-19 · 32 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2018-14392

Leave a comment