CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Mybb: >> Thankyou/like System Security Vulnerabilities

CVE-2018-25247

MyBB Like Plugin 3.0.0 contains a cross-site scripting vulnerability that allows attackers to inject malicious scripts by creating posts or threads with unvalidated subject content. Attackers can craft post subjects containing script tags that execute when other users view the attacker's profile, where liked posts are displayed without sanitization.

CVSS Score

5.1

EPSS Score

0.0

Published

2026-04-04

Page 1

Vulnerabilities

Vulnerable Software

Mybb: >> Thankyou/like System Security Vulnerabilities

Products

Pricing

Contact Us