CVE-2026-54224

Description

UBB.threads is vulnerable to Denial of Service (DoS). By sending multiple concurrent requests to view any user profile on instances with many registered users, an authenticated attacker can easily exhaust database resources and completely deny access to the application for other users. Because vendor contact attempts were unsuccessful, the vulnerability has only been confirmed in version 7.7.5 but may also affect other versions.

References

• https://cert.pl/en/posts/2026/06/CVE-2026-54219
• https://www.ubbcentral.com/