VYPR
Medium severity5.4NVD Advisory· Published May 11, 2018· Updated Jun 17, 2026

CVE-2018-10580

CVE-2018-10580

Description

The "Latest Posts on Profile" plugin 1.1 for MyBB has XSS because there is an added section in a user profile that displays that user's most recent posts without sanitizing the tsubject (aka thread subject) field.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.