← All advisories

Unrated severityOSV Advisory· Published Aug 14, 2018· Updated Aug 5, 2024

CVE-2018-14888

CVE-2018-14888

Description

inc/plugins/thankyoulike.php in the Eldenroot Thank You/Like plugin before 3.1.0 for MyBB allows XSS via a post or thread subject.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

MyBB/Thankyou\/like SystemOSV
Range: v1.7, v1.8, v1.9, …
MyBB/Thank You/Likellm-create
Range: <3.1.0

Patches

Vulnerability mechanics

Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

4

www.exploit-db.com/exploits/45178/mitreexploitx_refsource_EXPLOIT-DB
packetstormsecurity.com/files/148871/MyBB-Thank-You-Like-3.0.0-Cross-Site-Scripting.htmlmitrex_refsource_MISC
community.mybb.com/mods.phpmitrex_refsource_CONFIRM
github.com/mybbgroup/MyBB_Thank-you-like-plugin/pull/199mitrex_refsource_CONFIRM

News mentions

0

No linked articles in our index yet.