Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Mybb — Vulnerabilities & Security Advisories 17

Browse all 17 CVE security advisories affecting Mybb. AI-powered Chinese analysis, POCs, and references for each vulnerability.

MyBB serves as a free, open-source forum software platform enabling online community discussions. Historically, it has been susceptible to multiple vulnerability classes, including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation, contributing to its 17 recorded CVEs. While no major public security incidents have been widely documented, the software's persistent vulnerability history suggests a need for rigorous patch management and security hardening. Its PHP-based architecture and extensive customization options may introduce additional attack surfaces if not properly maintained. Regular updates and secure configuration remain critical for mitigating risks associated with this platform.

Found 3 results / 17Clear Filters
Top products by Mybb: MyBB myBB forums MyBB Like Plugin MyBB Downloads Plugin MyBB Last User's Threads in Profile Plugin MyBB My Arcade Plugin MyBB Recent threads
CVE IDTitleCVSSSeverityPublished
CVE-2023-53978 myBB Forums 1.8.26 Stored Cross-Site Scripting via Forum Announcements — myBB forumsCWE-79 5.4 Medium2025-12-22
CVE-2023-53976 myBB Forums 1.8.26 Stored Cross-Site Scripting via Template Management — myBB forumsCWE-79 5.4 Medium2025-12-22
CVE-2023-53977 myBB Forums 1.8.26 Stored Cross-Site Scripting via Forum Management — myBB forumsCWE-79 5.4 Medium2025-12-22

This page lists every published CVE security advisory associated with Mybb. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.