EIP-2026-112724
PRE-CVETipsOfTheDay MyBB Plugin - Multiple Vulnerabilities
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-112724. PoCs published by VipVince.
AI-analyzed exploit summary The document describes stored XSS and SQL injection vulnerabilities in the TipsOfTheDay MyBB plugin (version 1.0). It includes code snippets demonstrating the vulnerabilities and proof-of-concept exploitation steps, but does not contain functional exploit code.
Description
TipsOfTheDay MyBB Plugin - Multiple Vulnerabilities
Exploits (1)
exploitdb
WRITEUP
by VipVince · textwebappsphp
https://www.exploit-db.com/exploits/23322
The document describes stored XSS and SQL injection vulnerabilities in the TipsOfTheDay MyBB plugin (version 1.0). It includes code snippets demonstrating the vulnerabilities and proof-of-concept exploitation steps, but does not contain functional exploit code.
Classification
Writeup 90%
Attack Type
Sqli | Xss
Complexity
Trivial
Reliability
Reliable
Target:
MyBB TipsOfTheDay plugin v1.0
No auth needed
Prerequisites:
Access to the vulnerable MyBB plugin endpoint
devstral-2 · analyzed Feb 18, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026