CNNVD-202601-3981 Information

CNNVD ID

CNNVD-202601-3981

Related CVE

CVE-2018-25116

• CNNVD Published: 2026-01-23

Description (Chinese)

Thread Redirect plugin for MyBB是Jamie Sage个人开发者的一个MyBB插件。 Thread Redirect plugin for MyBB 0.2.1版本存在跨站脚本漏洞，该漏洞源于自定义文本输入字段清理不当，可能导致跨站脚本攻击。

Description (English)

Thread Direct Plugin for MyBB is a MyBB plugin for Jamie Sage’s personal developer. There is a cross-site script loophole in version Thread Research plugin for MyBB 0.2.1 which stems from the inappropriate clean-up of custom text input fields, which may lead to cross-site script attacks.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

个人开发者

Published

2026-01-23

Last Modified

2026-02-24

References

https://github.com/jamiesage123/Thread-Redirect https://www.exploit-db.com/exploits/49505 https://www.vulncheck.com/advisories/mybb-thread-redirect-plugin-cross-site-scripting

Patch

https://mybb.com/download/