Vulnerabilities > Mybb > Active Threads

DATE CVE VULNERABILITY TITLE RISK
2023-04-24 CVE-2022-28354 Cross-site Scripting vulnerability in Mybb Active Threads 1.3.0
In the Active Threads Plugin 1.3.0 for MyBB, the activethreads.php date parameter is vulnerable to XSS when setting a time period.
network
low complexity
mybb CWE-79
6.1