Neothermic

**Name of the Vulnerable Software and Affected Versions** MyBB versions 1.4.2 **Description** The issue arises from improper handling of uploaded files with nonstandard file types that contain HTML sequences, allowing remote attackers to cause these files to be processed as HTML. This could potentially be leveraged for cross-site scripting (XSS) and other attacks. **Recommendations** For version 1.4.2, update to a version that properly handles file uploads and MIME types to prevent HTML sequences in uploaded files from being executed.