GCVE - cpe:2.3:a:mybb:mybb:1.18.19:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:mybb:mybb:1.18.19:*:*:*:*:*:*:*

part: a version: 1.18.19 update: *

Vendor	Mybb (`8821e130-2590-5689-a7de-85bc65b3bdf4`)
Product	Mybb (`0a7c5598-1dcf-5314-89b1-60f621a820e9`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:github/mybb/mybb`	purl2cpe	2026-06-01 10:11:09.774056

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2019-3579`	vulnerable	2026-06-03 14:40:26.616391	Details available MyBB 1.8.19 allows remote attackers to obtain sensitive information because it discloses the username upon receiving a password-reset request that lacks the code parameter. Published: 2019-06-06T18:11:32.000Z Updated: 2024-08-04T19:12:09.648Z Open on db.gcve.eu Reference links https://blog.mybb.com/2019/02/27/mybb-1-8-20-released-security-maintenance-release/ https://blog.mybb.com/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-3578`	vulnerable	2026-06-03 14:40:26.615408	Details available MyBB 1.8.19 has XSS in the resetpassword function. Published: 2019-06-06T18:13:52.000Z Updated: 2024-08-04T19:12:09.635Z Open on db.gcve.eu Reference links https://blog.mybb.com/2019/02/27/mybb-1-8-20-released-security-maintenance-release/ https://blog.mybb.com/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.