CVE-2026-54221 – Reflected XSS in UBB.threads

CVE ID :CVE-2026-54221

Published : June 18, 2026, 12:56 p.m. | 46 minutes ago

Description :UBB.threads is vulnerable to Reflected XSS. The application improperly handles user input in certain requests, enabling attackers to execute arbitrary JavaScript in the context of a victim’s browser by tricking them into clicking a crafted link. 
Because vendor contact attempts were unsuccessful, the vulnerability has only been confirmed in version 7.7.5 but may also affect other versions.

Severity: 5.1 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…